5dc890714c905a0185109a6fd0276c8830565122f2865d98daf457b6564dcc08 | Triage

Sharing

General

Target

5dc890714c905a0185109a6fd0276c8830565122f2865d98daf457b6564dcc08
Size

304KB
Sample

221123-ky131sdb8s
MD5

aa460959c043c8ae4feca3becc08619a
SHA1

65d075c0078960c8a4c7548db17d0f48c85df398
SHA256

5dc890714c905a0185109a6fd0276c8830565122f2865d98daf457b6564dcc08
SHA512

6775ccb48f8d0d5c297aeb5a6f26f1cb6ffdc9e25f9f816054458cb6f1ed93c05e58a46ff6fd551a087bdf13a5691716d8a699f12b7b2c774f8bf5a9654733ee
SSDEEP

6144:NrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyP5:Nrkuu6/eIo4tQW62T+uTwM6YVxm245

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  5dc890714c905a0185109a6fd0276c8830565122f2865d98daf457b6564dcc08
- Size
  
  304KB
- MD5
  
  aa460959c043c8ae4feca3becc08619a
- SHA1
  
  65d075c0078960c8a4c7548db17d0f48c85df398
- SHA256
  
  5dc890714c905a0185109a6fd0276c8830565122f2865d98daf457b6564dcc08
- SHA512
  
  6775ccb48f8d0d5c297aeb5a6f26f1cb6ffdc9e25f9f816054458cb6f1ed93c05e58a46ff6fd551a087bdf13a5691716d8a699f12b7b2c774f8bf5a9654733ee
- SSDEEP
  
  6144:NrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyP5:Nrkuu6/eIo4tQW62T+uTwM6YVxm245
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2