48eb820aa24c05a39c980e9879445b2929dc067eeefa98341f0d2953d8a44c90 | Triage

Sharing

General

Target

48eb820aa24c05a39c980e9879445b2929dc067eeefa98341f0d2953d8a44c90
Size

316KB
Sample

221123-kds7nsgh72
MD5

f0d1462167622b8023f8420066f38a9a
SHA1

6085d2ff5d5db63749fa6f72af90f230145f8e91
SHA256

48eb820aa24c05a39c980e9879445b2929dc067eeefa98341f0d2953d8a44c90
SHA512

21240775bf9f02f48da1527af8cd0f4d1f845069c75b29a2447fa50c48a61094e2a4c3d492502254cfc831f18f52dac3ca594564a08c402bb375440f413c4a65
SSDEEP

6144:FrJbUzkuvcBYC47l2xuNfL2pAgWriSTb3Z9xuzSCR2bSL:Fr6kuveY3TT2XdGp9xRC4bSL

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  48eb820aa24c05a39c980e9879445b2929dc067eeefa98341f0d2953d8a44c90
- Size
  
  316KB
- MD5
  
  f0d1462167622b8023f8420066f38a9a
- SHA1
  
  6085d2ff5d5db63749fa6f72af90f230145f8e91
- SHA256
  
  48eb820aa24c05a39c980e9879445b2929dc067eeefa98341f0d2953d8a44c90
- SHA512
  
  21240775bf9f02f48da1527af8cd0f4d1f845069c75b29a2447fa50c48a61094e2a4c3d492502254cfc831f18f52dac3ca594564a08c402bb375440f413c4a65
- SSDEEP
  
  6144:FrJbUzkuvcBYC47l2xuNfL2pAgWriSTb3Z9xuzSCR2bSL:Fr6kuveY3TT2XdGp9xRC4bSL
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2