1f1af784da21859f10fcb8b3770f7e931f14506ecebb03c5e77c5b70a44f87ba | Triage

Sharing

General

Target

1f1af784da21859f10fcb8b3770f7e931f14506ecebb03c5e77c5b70a44f87ba
Size

327KB
Sample

221123-kl8x4acf8t
MD5

c613123b3fff90ca5055dfddfcfd0657
SHA1

77bc0d9103a35226244e6ef4d313018cdd29f84c
SHA256

1f1af784da21859f10fcb8b3770f7e931f14506ecebb03c5e77c5b70a44f87ba
SHA512

f5a76c2db9479aad502498f5e5b6d7e265d72bcb0eddc0f9af7ff518eddef01cc085121c6872d496e70c87cd689089a1ee3f9bfa975b084b00baafc7b16d50c5
SSDEEP

6144:Jr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FaVG:Jr4iu6/eIo4Rsw33AtsmQzG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1f1af784da21859f10fcb8b3770f7e931f14506ecebb03c5e77c5b70a44f87ba
- Size
  
  327KB
- MD5
  
  c613123b3fff90ca5055dfddfcfd0657
- SHA1
  
  77bc0d9103a35226244e6ef4d313018cdd29f84c
- SHA256
  
  1f1af784da21859f10fcb8b3770f7e931f14506ecebb03c5e77c5b70a44f87ba
- SHA512
  
  f5a76c2db9479aad502498f5e5b6d7e265d72bcb0eddc0f9af7ff518eddef01cc085121c6872d496e70c87cd689089a1ee3f9bfa975b084b00baafc7b16d50c5
- SSDEEP
  
  6144:Jr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FaVG:Jr4iu6/eIo4Rsw33AtsmQzG
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2