820099bdef5d917e346c89dea9966d4c6aa67de61705075e272d8e7ce9e8cd3e | Triage

Sharing

General

Target

820099bdef5d917e346c89dea9966d4c6aa67de61705075e272d8e7ce9e8cd3e
Size

314KB
Sample

221124-d9qcbsab5y
MD5

b83611ee21bd2d5445cf24bd47b5615f
SHA1

cca31ceea17e154d8ba91b039e4ada9b3366de2c
SHA256

820099bdef5d917e346c89dea9966d4c6aa67de61705075e272d8e7ce9e8cd3e
SHA512

28e5431e6ffb527ce2d4937c2f6ae467e4b5db71453bc674a835f1c42f657c133688699f5336677945d86c2922a7bde7c27d70acbdae2260f1d89fd62d0bd152
SSDEEP

6144:Sr5bUzkuvcBYC47l2xGnV6OjJaV490B6lKPk3JDEbk0teSVtdF:SrqkuveY3RnV6c800oIpbv0SVtH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  820099bdef5d917e346c89dea9966d4c6aa67de61705075e272d8e7ce9e8cd3e
- Size
  
  314KB
- MD5
  
  b83611ee21bd2d5445cf24bd47b5615f
- SHA1
  
  cca31ceea17e154d8ba91b039e4ada9b3366de2c
- SHA256
  
  820099bdef5d917e346c89dea9966d4c6aa67de61705075e272d8e7ce9e8cd3e
- SHA512
  
  28e5431e6ffb527ce2d4937c2f6ae467e4b5db71453bc674a835f1c42f657c133688699f5336677945d86c2922a7bde7c27d70acbdae2260f1d89fd62d0bd152
- SSDEEP
  
  6144:Sr5bUzkuvcBYC47l2xGnV6OjJaV490B6lKPk3JDEbk0teSVtdF:SrqkuveY3RnV6c800oIpbv0SVtH
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2