8e8d3c0ce32d1d3542f8865b6b1df478f9491c6c2f612551d712f560406055d0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8e8d3c0ce32d1d3542f8865b6b1df478f9491c6c2f612551d712f560406055d0
Size

316KB
Sample

221124-d8habseh27
MD5

98be4668c87c85d0fd983a6b8dbc5b7d
SHA1

87a89706f617e5405a406455fc0dac9a5a3daad3
SHA256

8e8d3c0ce32d1d3542f8865b6b1df478f9491c6c2f612551d712f560406055d0
SHA512

8000b4ff72da4818703b41edc2bfb64ebf26e6b7c99c64d2f0e41aeedf1ede651e4e6a31becdc8f11a3bae120ff884814fe543e83f974167a5303868e30486aa
SSDEEP

6144:Tr/bUzkuvcBYC47l2xij4YTfpczmap8spMPed0VdtM9BdjhYfl:Tr0kuveY3cY1cia66MGd0Vs9BdNS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8e8d3c0ce32d1d3542f8865b6b1df478f9491c6c2f612551d712f560406055d0
- Size
  
  316KB
- MD5
  
  98be4668c87c85d0fd983a6b8dbc5b7d
- SHA1
  
  87a89706f617e5405a406455fc0dac9a5a3daad3
- SHA256
  
  8e8d3c0ce32d1d3542f8865b6b1df478f9491c6c2f612551d712f560406055d0
- SHA512
  
  8000b4ff72da4818703b41edc2bfb64ebf26e6b7c99c64d2f0e41aeedf1ede651e4e6a31becdc8f11a3bae120ff884814fe543e83f974167a5303868e30486aa
- SSDEEP
  
  6144:Tr/bUzkuvcBYC47l2xij4YTfpczmap8spMPed0VdtM9BdjhYfl:Tr0kuveY3cY1cia66MGd0Vs9BdNS
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2