b036fad108a0275ed1e4cc487bf95f46bff0e1566bc0ce8db0b0bf37c955fc2f | Triage

Sharing

General

Target

b036fad108a0275ed1e4cc487bf95f46bff0e1566bc0ce8db0b0bf37c955fc2f
Size

316KB
Sample

221123-jq57bsfh73
MD5

dbec6e1b8a7deeb9d4387f1f326730b0
SHA1

8401eb21e4e175ae115d593a5d8de8dff0e9b9ac
SHA256

b036fad108a0275ed1e4cc487bf95f46bff0e1566bc0ce8db0b0bf37c955fc2f
SHA512

acdf2f82509a4fcd7f899b38ba8b05220040ba1667215e512334f06b04cea74b07241702c4d559fc1961be33087b7f860e60cda65a3de3b8c513c2bdc1a11bab
SSDEEP

6144:mr9bUzkuvcBYC47l2xjWM4ZZU4An9U+WTASrG:mr+kuveY3mWZW4An9U7TASrG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b036fad108a0275ed1e4cc487bf95f46bff0e1566bc0ce8db0b0bf37c955fc2f
- Size
  
  316KB
- MD5
  
  dbec6e1b8a7deeb9d4387f1f326730b0
- SHA1
  
  8401eb21e4e175ae115d593a5d8de8dff0e9b9ac
- SHA256
  
  b036fad108a0275ed1e4cc487bf95f46bff0e1566bc0ce8db0b0bf37c955fc2f
- SHA512
  
  acdf2f82509a4fcd7f899b38ba8b05220040ba1667215e512334f06b04cea74b07241702c4d559fc1961be33087b7f860e60cda65a3de3b8c513c2bdc1a11bab
- SSDEEP
  
  6144:mr9bUzkuvcBYC47l2xjWM4ZZU4An9U+WTASrG:mr+kuveY3mWZW4An9U7TASrG
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2