b52e279675ab70ae0966c27cc678ad579c14b1f3eb73123d3a2ea3f2f46f7680 | Triage

Sharing

General

Target

b52e279675ab70ae0966c27cc678ad579c14b1f3eb73123d3a2ea3f2f46f7680
Size

327KB
Sample

221123-jns4zsbb6y
MD5

8941da3c0a96d46f273b2910f396e447
SHA1

11a667006a74cf390cc448bca43222ef060c0094
SHA256

b52e279675ab70ae0966c27cc678ad579c14b1f3eb73123d3a2ea3f2f46f7680
SHA512

1d808f680779a438ccf6d7823c48b94e3a62e66d8a5c6085e55a1684f2a26f3a2d76a0bcbcc4888de1d3b30f6af9374f428a870f67a94bcf86be2baa545863d3
SSDEEP

6144:xr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F1:xr4iu6/eIo4Rsw33AtsmQ8

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b52e279675ab70ae0966c27cc678ad579c14b1f3eb73123d3a2ea3f2f46f7680
- Size
  
  327KB
- MD5
  
  8941da3c0a96d46f273b2910f396e447
- SHA1
  
  11a667006a74cf390cc448bca43222ef060c0094
- SHA256
  
  b52e279675ab70ae0966c27cc678ad579c14b1f3eb73123d3a2ea3f2f46f7680
- SHA512
  
  1d808f680779a438ccf6d7823c48b94e3a62e66d8a5c6085e55a1684f2a26f3a2d76a0bcbcc4888de1d3b30f6af9374f428a870f67a94bcf86be2baa545863d3
- SSDEEP
  
  6144:xr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F1:xr4iu6/eIo4Rsw33AtsmQ8
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2