3069307901b201978ace0b7077b0aa3e8eb1890decf7bbbd9d7b721c0d3adfe0 | Triage

Sharing

General

Target

3069307901b201978ace0b7077b0aa3e8eb1890decf7bbbd9d7b721c0d3adfe0
Size

316KB
Sample

221123-khqmcahb42
MD5

dacf4cf21deb3ff790ee6d8cb6105331
SHA1

74f2849f7de44b96c9854d30930791a95475f824
SHA256

3069307901b201978ace0b7077b0aa3e8eb1890decf7bbbd9d7b721c0d3adfe0
SHA512

bdbb2bdce291ce316e0633dabd5bf3a2487fda8f84c2d82b1017e7f462bd353837edd7d4a5029f8ddec0339d3fe5661da3def41623a05afea4c9890a23fbdece
SSDEEP

6144:lrybUzkuvcBYC47l2xphuK2+Otbaysqo+/VKitoTxwbs5iD3B2pho9O:lrLkuveY3EMK9ObxD/06s5w3BL9O

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3069307901b201978ace0b7077b0aa3e8eb1890decf7bbbd9d7b721c0d3adfe0
- Size
  
  316KB
- MD5
  
  dacf4cf21deb3ff790ee6d8cb6105331
- SHA1
  
  74f2849f7de44b96c9854d30930791a95475f824
- SHA256
  
  3069307901b201978ace0b7077b0aa3e8eb1890decf7bbbd9d7b721c0d3adfe0
- SHA512
  
  bdbb2bdce291ce316e0633dabd5bf3a2487fda8f84c2d82b1017e7f462bd353837edd7d4a5029f8ddec0339d3fe5661da3def41623a05afea4c9890a23fbdece
- SSDEEP
  
  6144:lrybUzkuvcBYC47l2xphuK2+Otbaysqo+/VKitoTxwbs5iD3B2pho9O:lrLkuveY3EMK9ObxD/06s5w3BL9O
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2