1a20b7cb976cec53ecd52e016f00d60cc671c60653be3304e8538fb7892f0ad4 | Triage

Sharing

General

Target

1a20b7cb976cec53ecd52e016f00d60cc671c60653be3304e8538fb7892f0ad4
Size

316KB
Sample

221123-km6t5ahc89
MD5

d4429984ab26cf0369e03181a03aef35
SHA1

d3df8b7e03cb698fa8dd4a3cb3753bf92ed2a84d
SHA256

1a20b7cb976cec53ecd52e016f00d60cc671c60653be3304e8538fb7892f0ad4
SHA512

67ef962764f5d8106f720abd40cec701d03bc23da99484feca47d185209c9400c3c205db3fbd459d45135c26bcf41d6cbf167f49c6c2be4e77668e804e7c5b57
SSDEEP

6144:WrYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZs:WrdkuveY3CvI5Zdkj6OEu1HSs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1a20b7cb976cec53ecd52e016f00d60cc671c60653be3304e8538fb7892f0ad4
- Size
  
  316KB
- MD5
  
  d4429984ab26cf0369e03181a03aef35
- SHA1
  
  d3df8b7e03cb698fa8dd4a3cb3753bf92ed2a84d
- SHA256
  
  1a20b7cb976cec53ecd52e016f00d60cc671c60653be3304e8538fb7892f0ad4
- SHA512
  
  67ef962764f5d8106f720abd40cec701d03bc23da99484feca47d185209c9400c3c205db3fbd459d45135c26bcf41d6cbf167f49c6c2be4e77668e804e7c5b57
- SSDEEP
  
  6144:WrYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZs:WrdkuveY3CvI5Zdkj6OEu1HSs
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2