0b958407e45a0a28d3fc57b2f279e6a200617d2d7c7ffd0568a5cbc252ac127c | Triage

Sharing

General

Target

0b958407e45a0a28d3fc57b2f279e6a200617d2d7c7ffd0568a5cbc252ac127c
Size

327KB
Sample

221123-kqvahach2s
MD5

eb10badbb8cc24ee45c45711564987e6
SHA1

4d779d0c98734e849f56e9b568b45a11cb3d9436
SHA256

0b958407e45a0a28d3fc57b2f279e6a200617d2d7c7ffd0568a5cbc252ac127c
SHA512

44a1b82e6307119e88a02d7b6231419f62b99b08173f4c954b2a4a75d1d95e309c1d9ded209d27e92cfb41918e1241f308b2972f54cc0fa5c4c7a2b02c6c5078
SSDEEP

6144:zrcbUzkuvcBYC47l2xrZSJDqNa6PuJJSMs9sCPFtAhc2m2pTLWg:zrhkuveY39zwQaFtAhxpTLT

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0b958407e45a0a28d3fc57b2f279e6a200617d2d7c7ffd0568a5cbc252ac127c
- Size
  
  327KB
- MD5
  
  eb10badbb8cc24ee45c45711564987e6
- SHA1
  
  4d779d0c98734e849f56e9b568b45a11cb3d9436
- SHA256
  
  0b958407e45a0a28d3fc57b2f279e6a200617d2d7c7ffd0568a5cbc252ac127c
- SHA512
  
  44a1b82e6307119e88a02d7b6231419f62b99b08173f4c954b2a4a75d1d95e309c1d9ded209d27e92cfb41918e1241f308b2972f54cc0fa5c4c7a2b02c6c5078
- SSDEEP
  
  6144:zrcbUzkuvcBYC47l2xrZSJDqNa6PuJJSMs9sCPFtAhc2m2pTLWg:zrhkuveY39zwQaFtAhxpTLT
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2