1bf028be7e98f4e286904e43885dbb12ff81842c92e4bc7fbc46246b32d0fe86 | Triage

Sharing

General

Target

1bf028be7e98f4e286904e43885dbb12ff81842c92e4bc7fbc46246b32d0fe86
Size

304KB
Sample

221123-k1ggdshh46
MD5

e8177d0732ea1b1da43f31f4256b4bbf
SHA1

93ae93865f159583f0e52a4ec6e998ccea3d273a
SHA256

1bf028be7e98f4e286904e43885dbb12ff81842c92e4bc7fbc46246b32d0fe86
SHA512

8374f262b55f085979447a96d15a127c9a613e1ae75423084945da845c06a1f5403e41c1cf64e28435d8886303cfd86a8e0ac34d31a2733f0d75cb7c12832e77
SSDEEP

6144:NrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPO:Nrkuu6/eIo4tQW62T+uTwM6YVxm24O

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1bf028be7e98f4e286904e43885dbb12ff81842c92e4bc7fbc46246b32d0fe86
- Size
  
  304KB
- MD5
  
  e8177d0732ea1b1da43f31f4256b4bbf
- SHA1
  
  93ae93865f159583f0e52a4ec6e998ccea3d273a
- SHA256
  
  1bf028be7e98f4e286904e43885dbb12ff81842c92e4bc7fbc46246b32d0fe86
- SHA512
  
  8374f262b55f085979447a96d15a127c9a613e1ae75423084945da845c06a1f5403e41c1cf64e28435d8886303cfd86a8e0ac34d31a2733f0d75cb7c12832e77
- SSDEEP
  
  6144:NrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPO:Nrkuu6/eIo4tQW62T+uTwM6YVxm24O
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2