0b20638506b6b6ffe28564f757d17d41311a1b1887bfbd3a7e0f0e6df21370b8 | Triage

Sharing

General

Target

0B20638506B6B6FFE28564F757D17D41311A1B1887BFBD3A7E0F0E6DF21370B8
Size

816KB
Sample

221123-r2l7laab67
MD5

694e2a393bec2bc0cd7db106e391fd0a
SHA1

405a4ee0a93725506ed5f522afaeb7901d5ff9b3
SHA256

0b20638506b6b6ffe28564f757d17d41311a1b1887bfbd3a7e0f0e6df21370b8
SHA512

546e02b147ab3a2fb01490aa68b29596844331e47aadca4b15aaa5e66f2caf5c0295ab416c7c727d74e0fc466126ad4822f5b13906beb654e333c5b249416fbd
SSDEEP

12288:PML7nvXmvU+z2NT9TlHyGKjicrys0AmYSCQnATNtdXyWWK6vNK37c:+mvU3dvrS1ys0cbbtdX2rKg

Score

8^/10

Malware Config

Targets

- Target
  
  0B20638506B6B6FFE28564F757D17D41311A1B1887BFBD3A7E0F0E6DF21370B8
- Size
  
  816KB
- MD5
  
  694e2a393bec2bc0cd7db106e391fd0a
- SHA1
  
  405a4ee0a93725506ed5f522afaeb7901d5ff9b3
- SHA256
  
  0b20638506b6b6ffe28564f757d17d41311a1b1887bfbd3a7e0f0e6df21370b8
- SHA512
  
  546e02b147ab3a2fb01490aa68b29596844331e47aadca4b15aaa5e66f2caf5c0295ab416c7c727d74e0fc466126ad4822f5b13906beb654e333c5b249416fbd
- SSDEEP
  
  12288:PML7nvXmvU+z2NT9TlHyGKjicrys0AmYSCQnATNtdXyWWK6vNK37c:+mvU3dvrS1ys0cbbtdX2rKg
Score

8^/10
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Exploitation for Client Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2