feb27345231e2274736c1b4189f95c92d30804689f8cafe44313407fb22ed3a3 | Triage

Sharing

General

Target

feb27345231e2274736c1b4189f95c92d30804689f8cafe44313407fb22ed3a3
Size

320KB
Sample

221124-dhwd9sgb6t
MD5

d7dcdb7ad10c5b983b56692b599fc949
SHA1

1e4e01af728be8f3a30f8665c30787156b18fb25
SHA256

feb27345231e2274736c1b4189f95c92d30804689f8cafe44313407fb22ed3a3
SHA512

f8d4276c409207e17a639866fd73e1b8848a8057b6213274a39971df48967ff4300e60da2e0750819c4aa1ac5dfe27d5c4314a7dcc6647539807d46b6c3e21b1
SSDEEP

6144:prORTyv4bo0jy7bobUzkuvcBYC47l2xYuM4EHHrB7lkqR5dUzEmprgF7lTstG:prVtkuveY3aEHF7lLIpkHkG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  feb27345231e2274736c1b4189f95c92d30804689f8cafe44313407fb22ed3a3
- Size
  
  320KB
- MD5
  
  d7dcdb7ad10c5b983b56692b599fc949
- SHA1
  
  1e4e01af728be8f3a30f8665c30787156b18fb25
- SHA256
  
  feb27345231e2274736c1b4189f95c92d30804689f8cafe44313407fb22ed3a3
- SHA512
  
  f8d4276c409207e17a639866fd73e1b8848a8057b6213274a39971df48967ff4300e60da2e0750819c4aa1ac5dfe27d5c4314a7dcc6647539807d46b6c3e21b1
- SSDEEP
  
  6144:prORTyv4bo0jy7bobUzkuvcBYC47l2xYuM4EHHrB7lkqR5dUzEmprgF7lTstG:prVtkuveY3aEHF7lLIpkHkG
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2