205facf51aa94bb41242836dbeb036fd7124a29417e1cef154e4c79d79d7ab04 | Triage

Sharing

General

Target

205facf51aa94bb41242836dbeb036fd7124a29417e1cef154e4c79d79d7ab04
Size

327KB
Sample

221123-kl1lqacf7x
MD5

954e671407e0441d879ef3c82ec4ecb3
SHA1

bde1bd311f4d30c172021c411b70cf7b7dd31cfd
SHA256

205facf51aa94bb41242836dbeb036fd7124a29417e1cef154e4c79d79d7ab04
SHA512

0025617b4f3a99839b713ac83bd7287e04e4274dcbc4d185702cc41e20393c2b012ea9e951a3df30ce7a3519623224764299026009dd856a42eb3b2fcb75b759
SSDEEP

6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fd:Rr4iu6/eIo4Rsw33AtsmQI

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  205facf51aa94bb41242836dbeb036fd7124a29417e1cef154e4c79d79d7ab04
- Size
  
  327KB
- MD5
  
  954e671407e0441d879ef3c82ec4ecb3
- SHA1
  
  bde1bd311f4d30c172021c411b70cf7b7dd31cfd
- SHA256
  
  205facf51aa94bb41242836dbeb036fd7124a29417e1cef154e4c79d79d7ab04
- SHA512
  
  0025617b4f3a99839b713ac83bd7287e04e4274dcbc4d185702cc41e20393c2b012ea9e951a3df30ce7a3519623224764299026009dd856a42eb3b2fcb75b759
- SSDEEP
  
  6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fd:Rr4iu6/eIo4Rsw33AtsmQI
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2