6241bdcbe8deb7e35b5327778854312b64b0578ff5a994bcdb6228816ca51eb7 | Triage

Sharing

General

Target

6241bdcbe8deb7e35b5327778854312b64b0578ff5a994bcdb6228816ca51eb7
Size

327KB
Sample

221123-j9brtsca9y
MD5

aa3167831ae55f99d44cee1cea05fda4
SHA1

65b1f7b21ee43831ab8be7c778aca948f9c26b8f
SHA256

6241bdcbe8deb7e35b5327778854312b64b0578ff5a994bcdb6228816ca51eb7
SHA512

3bc95a206e9db361a561f04f47770e0c3f5d6f408c7d389a292c0df32e8b59eb03be54a9914ad16f4df54f11c4bacbb451c07b7ee1144128b977ada485c0e5e4
SSDEEP

6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F8:Rr4iu6/eIo4Rsw33AtsmQ1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6241bdcbe8deb7e35b5327778854312b64b0578ff5a994bcdb6228816ca51eb7
- Size
  
  327KB
- MD5
  
  aa3167831ae55f99d44cee1cea05fda4
- SHA1
  
  65b1f7b21ee43831ab8be7c778aca948f9c26b8f
- SHA256
  
  6241bdcbe8deb7e35b5327778854312b64b0578ff5a994bcdb6228816ca51eb7
- SHA512
  
  3bc95a206e9db361a561f04f47770e0c3f5d6f408c7d389a292c0df32e8b59eb03be54a9914ad16f4df54f11c4bacbb451c07b7ee1144128b977ada485c0e5e4
- SSDEEP
  
  6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F8:Rr4iu6/eIo4Rsw33AtsmQ1
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2