6fe0e2d38762506f2c27cf1faa4bb17f04ff062d5bd0b8a41b095c8d77f7380e | Triage

Sharing

General

Target

6fe0e2d38762506f2c27cf1faa4bb17f04ff062d5bd0b8a41b095c8d77f7380e
Size

304KB
Sample

221123-kysrmsdb61
MD5

bfb6cdfb23c6a758e03b237f6ff800c7
SHA1

5491da9239b808645ba706f50217eac2bb54fa9b
SHA256

6fe0e2d38762506f2c27cf1faa4bb17f04ff062d5bd0b8a41b095c8d77f7380e
SHA512

ca4ccbe5e6340b21b23651f3192628de296df758f78909546882f648a11689a623abc407c60d5119138247f5f17bc50adfaa60339f4b1346b4615be2842f0a83
SSDEEP

6144:VrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPu:Vrkuu6/eIo4tQW62T+uTwM6YVxm24u

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6fe0e2d38762506f2c27cf1faa4bb17f04ff062d5bd0b8a41b095c8d77f7380e
- Size
  
  304KB
- MD5
  
  bfb6cdfb23c6a758e03b237f6ff800c7
- SHA1
  
  5491da9239b808645ba706f50217eac2bb54fa9b
- SHA256
  
  6fe0e2d38762506f2c27cf1faa4bb17f04ff062d5bd0b8a41b095c8d77f7380e
- SHA512
  
  ca4ccbe5e6340b21b23651f3192628de296df758f78909546882f648a11689a623abc407c60d5119138247f5f17bc50adfaa60339f4b1346b4615be2842f0a83
- SSDEEP
  
  6144:VrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPu:Vrkuu6/eIo4tQW62T+uTwM6YVxm24u
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2