d8d397457a78a8419b404299617433d3acfc68d2b255eaafc97df6a2220660c3 | Triage

Sharing

General

Target

d8d397457a78a8419b404299617433d3acfc68d2b255eaafc97df6a2220660c3
Size

304KB
Sample

221123-kvhr9sda5t
MD5

0858f7c917944813fa4aad195921fe79
SHA1

13c625d51693fac1c35090d249bb01fe5befebaf
SHA256

d8d397457a78a8419b404299617433d3acfc68d2b255eaafc97df6a2220660c3
SHA512

cd78199bde6b3e46c62a3e53df3799a29f8183145593a3dd9663602a7c553d26325a67e8d013800292d5b5ec04fcc2b4dde080be4d4b55aa40515f66d53c6072
SSDEEP

6144:lrkx9uEo2S1YnQmCX492DkwNP3qpYFkXdlP5IO5/OoCVHuy6SHZ86riVZkiizi:lrkHu6/eIo4RXdrIO5/OpVHd6Ky6rizT

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d8d397457a78a8419b404299617433d3acfc68d2b255eaafc97df6a2220660c3
- Size
  
  304KB
- MD5
  
  0858f7c917944813fa4aad195921fe79
- SHA1
  
  13c625d51693fac1c35090d249bb01fe5befebaf
- SHA256
  
  d8d397457a78a8419b404299617433d3acfc68d2b255eaafc97df6a2220660c3
- SHA512
  
  cd78199bde6b3e46c62a3e53df3799a29f8183145593a3dd9663602a7c553d26325a67e8d013800292d5b5ec04fcc2b4dde080be4d4b55aa40515f66d53c6072
- SSDEEP
  
  6144:lrkx9uEo2S1YnQmCX492DkwNP3qpYFkXdlP5IO5/OoCVHuy6SHZ86riVZkiizi:lrkHu6/eIo4RXdrIO5/OpVHd6Ky6rizT
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2