0f525a7263383c824e1cfb3cecd9bd7153a79c36739d4b8da37cc7bf12de2e47 | Triage

Sharing

General

Target

0f525a7263383c824e1cfb3cecd9bd7153a79c36739d4b8da37cc7bf12de2e47
Size

313KB
Sample

221123-kp8fqshd74
MD5

a64dcd7dba9aed3b956867799fc0aa92
SHA1

18187c97a352356d8915644a20c293c817073616
SHA256

0f525a7263383c824e1cfb3cecd9bd7153a79c36739d4b8da37cc7bf12de2e47
SHA512

8bf8deefe4ea0f39f44f4e3d591502506ab4af525d1ad8c98b28a5f89928ff3fc982dda67a4d47574476eee152baa8bf5cd9aa08450d61088664ef05ef9c9fd1
SSDEEP

6144:OrY9uEo2S1YnQmCX492DkwNP3qpYFG+NFJCWE0ALKkizq+o8Ixc+pwymEVwk9pYY:Orwu6/eIo4KfJs0ALK5q+GxcXBER9pB

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0f525a7263383c824e1cfb3cecd9bd7153a79c36739d4b8da37cc7bf12de2e47
- Size
  
  313KB
- MD5
  
  a64dcd7dba9aed3b956867799fc0aa92
- SHA1
  
  18187c97a352356d8915644a20c293c817073616
- SHA256
  
  0f525a7263383c824e1cfb3cecd9bd7153a79c36739d4b8da37cc7bf12de2e47
- SHA512
  
  8bf8deefe4ea0f39f44f4e3d591502506ab4af525d1ad8c98b28a5f89928ff3fc982dda67a4d47574476eee152baa8bf5cd9aa08450d61088664ef05ef9c9fd1
- SSDEEP
  
  6144:OrY9uEo2S1YnQmCX492DkwNP3qpYFG+NFJCWE0ALKkizq+o8Ixc+pwymEVwk9pYY:Orwu6/eIo4KfJs0ALK5q+GxcXBER9pB
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2