9b5f8f99dc670032583acc1f8b69622166254f528f253b2f16626dfef233fb44 | Triage

Sharing

General

Target

9b5f8f99dc670032583acc1f8b69622166254f528f253b2f16626dfef233fb44
Size

313KB
Sample

221123-jxd2esgb75
MD5

be823da7d3ab23c2c81ef08122cb5f91
SHA1

a6f04a479f1273c8253e99636d4e941b6881836c
SHA256

9b5f8f99dc670032583acc1f8b69622166254f528f253b2f16626dfef233fb44
SHA512

b4e731a1266297f4ecb1041dbef7eac20f13fe1c132118ff39a6ac63e39c87a7ee8537da8eb507042e70b39f96b61fc221ef0876e6301a5f1f5bc2693dac17f8
SSDEEP

6144:nrK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0LU:nryu6/eIo4vMResyEf0uP9d9UG0U

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  9b5f8f99dc670032583acc1f8b69622166254f528f253b2f16626dfef233fb44
- Size
  
  313KB
- MD5
  
  be823da7d3ab23c2c81ef08122cb5f91
- SHA1
  
  a6f04a479f1273c8253e99636d4e941b6881836c
- SHA256
  
  9b5f8f99dc670032583acc1f8b69622166254f528f253b2f16626dfef233fb44
- SHA512
  
  b4e731a1266297f4ecb1041dbef7eac20f13fe1c132118ff39a6ac63e39c87a7ee8537da8eb507042e70b39f96b61fc221ef0876e6301a5f1f5bc2693dac17f8
- SSDEEP
  
  6144:nrK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0LU:nryu6/eIo4vMResyEf0uP9d9UG0U
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2