d48f70fa6a9db40275f0031d686cdb18cb1b020c2253ad14b86c8e3b3042b691 | Triage

Sharing

General

Target

d48f70fa6a9db40275f0031d686cdb18cb1b020c2253ad14b86c8e3b3042b691
Size

304KB
Sample

221123-kvr1yahf62
MD5

06879cb8cc8d66d830b4cd12b951e166
SHA1

b2ec19590ae50624ecaf06ad27b65892edb8d266
SHA256

d48f70fa6a9db40275f0031d686cdb18cb1b020c2253ad14b86c8e3b3042b691
SHA512

3de213b765f28fcabbd186063a3ff70aed14b556e21518233a9b040d9e39a80a1a6f180ccc9292ca29a6eb55a5950de3bbf0d0a1909c0e73e81700e6fffcf859
SSDEEP

6144:9rkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPL:9rkuu6/eIo4tQW62T+uTwM6YVxm24L

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d48f70fa6a9db40275f0031d686cdb18cb1b020c2253ad14b86c8e3b3042b691
- Size
  
  304KB
- MD5
  
  06879cb8cc8d66d830b4cd12b951e166
- SHA1
  
  b2ec19590ae50624ecaf06ad27b65892edb8d266
- SHA256
  
  d48f70fa6a9db40275f0031d686cdb18cb1b020c2253ad14b86c8e3b3042b691
- SHA512
  
  3de213b765f28fcabbd186063a3ff70aed14b556e21518233a9b040d9e39a80a1a6f180ccc9292ca29a6eb55a5950de3bbf0d0a1909c0e73e81700e6fffcf859
- SSDEEP
  
  6144:9rkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPL:9rkuu6/eIo4tQW62T+uTwM6YVxm24L
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2