2785d54168028021d93a11b3564738fc7e919f465275f9eb89bafdcc9949d3c9 | Triage

Sharing

General

Target

2785d54168028021d93a11b3564738fc7e919f465275f9eb89bafdcc9949d3c9
Size

304KB
Sample

221123-kz8jgshh34
MD5

bb7c89fb4bdaf98cb1c72adeb6818f6b
SHA1

06c787fe1816c1aa48c7884c5276e87d9b135bb7
SHA256

2785d54168028021d93a11b3564738fc7e919f465275f9eb89bafdcc9949d3c9
SHA512

8a1308c2b4c6868a18c2ce9d245ed46c8251d1c76f085884283731b8f697916f6440d48a97edc5713ca90195e82e4d28acc205be8760293b029679d0ee2057d3
SSDEEP

6144:VrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPO:Vrkuu6/eIo4tQW62T+uTwM6YVxm24O

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2785d54168028021d93a11b3564738fc7e919f465275f9eb89bafdcc9949d3c9
- Size
  
  304KB
- MD5
  
  bb7c89fb4bdaf98cb1c72adeb6818f6b
- SHA1
  
  06c787fe1816c1aa48c7884c5276e87d9b135bb7
- SHA256
  
  2785d54168028021d93a11b3564738fc7e919f465275f9eb89bafdcc9949d3c9
- SHA512
  
  8a1308c2b4c6868a18c2ce9d245ed46c8251d1c76f085884283731b8f697916f6440d48a97edc5713ca90195e82e4d28acc205be8760293b029679d0ee2057d3
- SSDEEP
  
  6144:VrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPO:Vrkuu6/eIo4tQW62T+uTwM6YVxm24O
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2