6205b58488fd69f8b9fbd4af6475ff4d024ff5b1b8f76e4e3f04e39a23a7882e | Triage

Sharing

General

Target

6205b58488fd69f8b9fbd4af6475ff4d024ff5b1b8f76e4e3f04e39a23a7882e
Size

316KB
Sample

221123-j9danaca9z
MD5

b5529f65a1a7060e0eb412565026a39a
SHA1

e6e272dd3408ff519e5198eefe9553b75494ca5d
SHA256

6205b58488fd69f8b9fbd4af6475ff4d024ff5b1b8f76e4e3f04e39a23a7882e
SHA512

0e9c27ddcb1d742eb8a0d4067a59837b68b4cf4b0222243d6b4db370b74551017651f003e5e3f3e909a19269414e17afc7d3c6ebdef928502c0fe1c8484b32a1
SSDEEP

6144:BrvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVb:BrkkuveY3zhlV6tmDxzwVb

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6205b58488fd69f8b9fbd4af6475ff4d024ff5b1b8f76e4e3f04e39a23a7882e
- Size
  
  316KB
- MD5
  
  b5529f65a1a7060e0eb412565026a39a
- SHA1
  
  e6e272dd3408ff519e5198eefe9553b75494ca5d
- SHA256
  
  6205b58488fd69f8b9fbd4af6475ff4d024ff5b1b8f76e4e3f04e39a23a7882e
- SHA512
  
  0e9c27ddcb1d742eb8a0d4067a59837b68b4cf4b0222243d6b4db370b74551017651f003e5e3f3e909a19269414e17afc7d3c6ebdef928502c0fe1c8484b32a1
- SSDEEP
  
  6144:BrvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVb:BrkkuveY3zhlV6tmDxzwVb
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2