389755f3678a395db831531c8c06d8cbe7c60a192375c268bc3b7f576a46efea | Triage

Sharing

General

Target

389755f3678a395db831531c8c06d8cbe7c60a192375c268bc3b7f576a46efea
Size

327KB
Sample

221123-kf9x7scd7y
MD5

d1884dd6b42eac5785f72513b26252bb
SHA1

9e602487c0abe04503ffa61d7c45c93fc30773d9
SHA256

389755f3678a395db831531c8c06d8cbe7c60a192375c268bc3b7f576a46efea
SHA512

d50ab1f1fef962d7ac81e068025ee879b9d2da135f7df4ba0d5cd9a505e18bd80a872f5ab4502e0b0dc744cbaaa6fcb113b6ac5231c7cbc72d7d1dd92d4c39b1
SSDEEP

6144:hr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F9:hr4iu6/eIo4Rsw33AtsmQs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  389755f3678a395db831531c8c06d8cbe7c60a192375c268bc3b7f576a46efea
- Size
  
  327KB
- MD5
  
  d1884dd6b42eac5785f72513b26252bb
- SHA1
  
  9e602487c0abe04503ffa61d7c45c93fc30773d9
- SHA256
  
  389755f3678a395db831531c8c06d8cbe7c60a192375c268bc3b7f576a46efea
- SHA512
  
  d50ab1f1fef962d7ac81e068025ee879b9d2da135f7df4ba0d5cd9a505e18bd80a872f5ab4502e0b0dc744cbaaa6fcb113b6ac5231c7cbc72d7d1dd92d4c39b1
- SSDEEP
  
  6144:hr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F9:hr4iu6/eIo4Rsw33AtsmQs
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2