1b399be727f918b6da8fbeec012c5a8634e621119d7319403ef23b57d6901fc6 | Triage

Sharing

General

Target

1b399be727f918b6da8fbeec012c5a8634e621119d7319403ef23b57d6901fc6
Size

316KB
Sample

221123-km1ccacg21
MD5

eba39606e54e32e216800cc316effa7a
SHA1

1b330dc75223cbcd591a6b0a2b00c71c8105fbe5
SHA256

1b399be727f918b6da8fbeec012c5a8634e621119d7319403ef23b57d6901fc6
SHA512

27521ae98cb93ae6e778a2e99b6abac5a9a92d33a6671141c0c90748eb334d04d7086d8015d3a88aca8708de7af65be0dd856264735559a9d8fd4efa853df4d5
SSDEEP

6144:+rYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZv:+rdkuveY3CvI5Zdkj6OEu1HSv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1b399be727f918b6da8fbeec012c5a8634e621119d7319403ef23b57d6901fc6
- Size
  
  316KB
- MD5
  
  eba39606e54e32e216800cc316effa7a
- SHA1
  
  1b330dc75223cbcd591a6b0a2b00c71c8105fbe5
- SHA256
  
  1b399be727f918b6da8fbeec012c5a8634e621119d7319403ef23b57d6901fc6
- SHA512
  
  27521ae98cb93ae6e778a2e99b6abac5a9a92d33a6671141c0c90748eb334d04d7086d8015d3a88aca8708de7af65be0dd856264735559a9d8fd4efa853df4d5
- SSDEEP
  
  6144:+rYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZv:+rdkuveY3CvI5Zdkj6OEu1HSv
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2