571d464214f6f16e40e522c28107017a1a9424900c1aa6eac6b8b958647f504a | Triage

Sharing

General

Target

571d464214f6f16e40e522c28107017a1a9424900c1aa6eac6b8b958647f504a
Size

323KB
Sample

221123-kbgqvsgg77
MD5

ddb7c7f56db7e04b3c4cb252aaa2a086
SHA1

d646ac85c9ffee3f3931926c1c5395245c8631f0
SHA256

571d464214f6f16e40e522c28107017a1a9424900c1aa6eac6b8b958647f504a
SHA512

7e8844dff58e680c0ecc8815c90990a1d6afc3c72036e9af23120e2247d737c166d422833f40528306f4223ac710828a0c5fdabed51595ece7391d009e7fba1b
SSDEEP

6144:YrV99uEo2S1YnQmCX492DkwNP3qpYFXTqttBv2tHlzLkFyhFOY4vHSMrS:YrVDu6/eIo4YOtEyc55Me

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  571d464214f6f16e40e522c28107017a1a9424900c1aa6eac6b8b958647f504a
- Size
  
  323KB
- MD5
  
  ddb7c7f56db7e04b3c4cb252aaa2a086
- SHA1
  
  d646ac85c9ffee3f3931926c1c5395245c8631f0
- SHA256
  
  571d464214f6f16e40e522c28107017a1a9424900c1aa6eac6b8b958647f504a
- SHA512
  
  7e8844dff58e680c0ecc8815c90990a1d6afc3c72036e9af23120e2247d737c166d422833f40528306f4223ac710828a0c5fdabed51595ece7391d009e7fba1b
- SSDEEP
  
  6144:YrV99uEo2S1YnQmCX492DkwNP3qpYFXTqttBv2tHlzLkFyhFOY4vHSMrS:YrVDu6/eIo4YOtEyc55Me
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2