5a6671816794d45ef7b383546d5df014c98204acb64ff4384eb2ba9ec221f808 | Triage

Sharing

General

Target

5a6671816794d45ef7b383546d5df014c98204acb64ff4384eb2ba9ec221f808
Size

312KB
Sample

221123-kavlbsgg49
MD5

e5be241830c84a8e7f58d61d01b8218d
SHA1

20cef94e118758493cb07a9cf07a5e3cf8be3c0d
SHA256

5a6671816794d45ef7b383546d5df014c98204acb64ff4384eb2ba9ec221f808
SHA512

abf8bbe8ce0180a23fc7d9d6d262aaf33f35fc1716fe4662861ad49162ebf0bcdb9b1a60df89b58670a16880e98994ad9c5c05ddd062075a7ce45d0426e63a78
SSDEEP

6144:wrkS9uEo2S1YnQmCX492DkwNP3qpYFK3WSsmbjbqKcs3wP8pXAN7iz/:wrkau6/eIo43ts7KcXgXAN7ij

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  5a6671816794d45ef7b383546d5df014c98204acb64ff4384eb2ba9ec221f808
- Size
  
  312KB
- MD5
  
  e5be241830c84a8e7f58d61d01b8218d
- SHA1
  
  20cef94e118758493cb07a9cf07a5e3cf8be3c0d
- SHA256
  
  5a6671816794d45ef7b383546d5df014c98204acb64ff4384eb2ba9ec221f808
- SHA512
  
  abf8bbe8ce0180a23fc7d9d6d262aaf33f35fc1716fe4662861ad49162ebf0bcdb9b1a60df89b58670a16880e98994ad9c5c05ddd062075a7ce45d0426e63a78
- SSDEEP
  
  6144:wrkS9uEo2S1YnQmCX492DkwNP3qpYFK3WSsmbjbqKcs3wP8pXAN7iz/:wrkau6/eIo43ts7KcXgXAN7ij
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2