0b164683b4213f49b1479fbb679752f778bea205f9e33f06acf84bdd24655fcc | Triage

Sharing

General

Target

0b164683b4213f49b1479fbb679752f778bea205f9e33f06acf84bdd24655fcc
Size

327KB
Sample

221123-kqx2dshe22
MD5

ac3fc044478fa8167571504ecdd269de
SHA1

35720c24bd240ed89b14e6d49282d3cd487eed45
SHA256

0b164683b4213f49b1479fbb679752f778bea205f9e33f06acf84bdd24655fcc
SHA512

508aed05efe1a40d6e12800712a39007abad96433f7360aed998e07586c96f8a1dce87fd9c70f2a8547fde8c035e3a054c6732cd053e1cab76e0d193cb0d64d5
SSDEEP

6144:Br469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F9:Br4iu6/eIo4Rsw33AtsmQg

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0b164683b4213f49b1479fbb679752f778bea205f9e33f06acf84bdd24655fcc
- Size
  
  327KB
- MD5
  
  ac3fc044478fa8167571504ecdd269de
- SHA1
  
  35720c24bd240ed89b14e6d49282d3cd487eed45
- SHA256
  
  0b164683b4213f49b1479fbb679752f778bea205f9e33f06acf84bdd24655fcc
- SHA512
  
  508aed05efe1a40d6e12800712a39007abad96433f7360aed998e07586c96f8a1dce87fd9c70f2a8547fde8c035e3a054c6732cd053e1cab76e0d193cb0d64d5
- SSDEEP
  
  6144:Br469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F9:Br4iu6/eIo4Rsw33AtsmQg
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2