63d170bb189ce31f28b54ee11ae4b3cfc617dd9444ffadb1ad4f5eae44256390 | Triage

Sharing

General

Target

63d170bb189ce31f28b54ee11ae4b3cfc617dd9444ffadb1ad4f5eae44256390
Size

313KB
Sample

221123-j8zr9sca8w
MD5

f9d44372947370f8a0148c8219b4f0f4
SHA1

9698b3ba1dfb0c348f4fda6e92ca8245c30e6aef
SHA256

63d170bb189ce31f28b54ee11ae4b3cfc617dd9444ffadb1ad4f5eae44256390
SHA512

027f547da809a3d032df9221c02679bdd28adce15f49fd33e821f34ed06f3791beb51886ed8b194167bfc14bcfc349913ce684f95f3620d1946e9d66332a4122
SSDEEP

6144:/rb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMa:/rRu6/eIo4t3PuFITKUAp

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  63d170bb189ce31f28b54ee11ae4b3cfc617dd9444ffadb1ad4f5eae44256390
- Size
  
  313KB
- MD5
  
  f9d44372947370f8a0148c8219b4f0f4
- SHA1
  
  9698b3ba1dfb0c348f4fda6e92ca8245c30e6aef
- SHA256
  
  63d170bb189ce31f28b54ee11ae4b3cfc617dd9444ffadb1ad4f5eae44256390
- SHA512
  
  027f547da809a3d032df9221c02679bdd28adce15f49fd33e821f34ed06f3791beb51886ed8b194167bfc14bcfc349913ce684f95f3620d1946e9d66332a4122
- SSDEEP
  
  6144:/rb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMa:/rRu6/eIo4t3PuFITKUAp
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2