38b19c54c9da6965ec7d7a09232893556616267f87f487cf05a69e7f5955c8c6 | Triage

Sharing

General

Target

38b19c54c9da6965ec7d7a09232893556616267f87f487cf05a69e7f5955c8c6
Size

323KB
Sample

221123-kf8p5sha72
MD5

fa6e705ed14b55e72e18cf231b123d8f
SHA1

2f9ce93b37c0317e35fbd1d41dd3e66c06598906
SHA256

38b19c54c9da6965ec7d7a09232893556616267f87f487cf05a69e7f5955c8c6
SHA512

39c254495f4ea140e0ff12678b4a877eef33c5761f9278f0cc31aed7ef689f22b98a429035b6c5ead7d29514ff65a4bd3efd37a5166e23678293b134b26f0424
SSDEEP

6144:orV99uEo2S1YnQmCX492DkwNP3qpYFXTqttBv2tHlzLkFyhFOY4vHSMrg:orVDu6/eIo4YOtEyc55ME

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  38b19c54c9da6965ec7d7a09232893556616267f87f487cf05a69e7f5955c8c6
- Size
  
  323KB
- MD5
  
  fa6e705ed14b55e72e18cf231b123d8f
- SHA1
  
  2f9ce93b37c0317e35fbd1d41dd3e66c06598906
- SHA256
  
  38b19c54c9da6965ec7d7a09232893556616267f87f487cf05a69e7f5955c8c6
- SHA512
  
  39c254495f4ea140e0ff12678b4a877eef33c5761f9278f0cc31aed7ef689f22b98a429035b6c5ead7d29514ff65a4bd3efd37a5166e23678293b134b26f0424
- SSDEEP
  
  6144:orV99uEo2S1YnQmCX492DkwNP3qpYFXTqttBv2tHlzLkFyhFOY4vHSMrg:orVDu6/eIo4YOtEyc55ME
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2