625bc9ff943d0452690c2c328e207666c9184efbfac5fe26014548e0e9738e27 | Triage

Sharing

General

Target

625bc9ff943d0452690c2c328e207666c9184efbfac5fe26014548e0e9738e27
Size

312KB
Sample

221123-j9a6asgf83
MD5

e812c7f2145673407c72655c5f0ddf83
SHA1

198fe62839c7112f828421976af36c26f05df73c
SHA256

625bc9ff943d0452690c2c328e207666c9184efbfac5fe26014548e0e9738e27
SHA512

b48c3139c74d07143b2bf4f068c6b1f16bed6cf0ad6a71c72089f04b7d024cfd1f55c2a0f403f54a2ff596d9287044d2d58f9a44ed273c1abc82dd69bc42bebe
SSDEEP

6144:xrkS9uEo2S1YnQmCX492DkwNP3qpYFK3WSsmbjbqKcs3wP8pXAN7iih:xrkau6/eIo43ts7KcXgXAN7ik

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  625bc9ff943d0452690c2c328e207666c9184efbfac5fe26014548e0e9738e27
- Size
  
  312KB
- MD5
  
  e812c7f2145673407c72655c5f0ddf83
- SHA1
  
  198fe62839c7112f828421976af36c26f05df73c
- SHA256
  
  625bc9ff943d0452690c2c328e207666c9184efbfac5fe26014548e0e9738e27
- SHA512
  
  b48c3139c74d07143b2bf4f068c6b1f16bed6cf0ad6a71c72089f04b7d024cfd1f55c2a0f403f54a2ff596d9287044d2d58f9a44ed273c1abc82dd69bc42bebe
- SSDEEP
  
  6144:xrkS9uEo2S1YnQmCX492DkwNP3qpYFK3WSsmbjbqKcs3wP8pXAN7iih:xrkau6/eIo43ts7KcXgXAN7ik
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2