b2b48cf031141a98495f2b69af62feed6a20f85c31d8c6370baf2543f49583b1 | Triage

Sharing

General

Target

b2b48cf031141a98495f2b69af62feed6a20f85c31d8c6370baf2543f49583b1
Size

304KB
Sample

221123-kw98xadb2w
MD5

3fd2afaa6e2f23ef4ca92c24b894f618
SHA1

3a37a5574a831e16a2806fa96df61b949903aa17
SHA256

b2b48cf031141a98495f2b69af62feed6a20f85c31d8c6370baf2543f49583b1
SHA512

9db3ef2cbbedd072f728b346823d7e1641965078c88f05295ee0c0674ecffeb2772790a3d1aece8f6ca77fd6ad91442dae875c63f199e00d9c77e227935bac72
SSDEEP

6144:VrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPB:Vrkuu6/eIo4tQW62T+uTwM6YVxm24B

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b2b48cf031141a98495f2b69af62feed6a20f85c31d8c6370baf2543f49583b1
- Size
  
  304KB
- MD5
  
  3fd2afaa6e2f23ef4ca92c24b894f618
- SHA1
  
  3a37a5574a831e16a2806fa96df61b949903aa17
- SHA256
  
  b2b48cf031141a98495f2b69af62feed6a20f85c31d8c6370baf2543f49583b1
- SHA512
  
  9db3ef2cbbedd072f728b346823d7e1641965078c88f05295ee0c0674ecffeb2772790a3d1aece8f6ca77fd6ad91442dae875c63f199e00d9c77e227935bac72
- SSDEEP
  
  6144:VrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPB:Vrkuu6/eIo4tQW62T+uTwM6YVxm24B
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2