bc2708fed09abbf2bf6ffebee8350b2adb6312dd2f3b25062652e865163d6623 | Triage

Sharing

General

Target

bc2708fed09abbf2bf6ffebee8350b2adb6312dd2f3b25062652e865163d6623
Size

313KB
Sample

221124-nvjw4sbe24
MD5

919eb2642abc2094f187e21a09ae7f5f
SHA1

a5b19e1ca642a34850c944137d4732e88b314fc4
SHA256

bc2708fed09abbf2bf6ffebee8350b2adb6312dd2f3b25062652e865163d6623
SHA512

3822d64baebd1ab61753ec46329be50969416da89a1b938d638a2c4ece76249d2ce91021a99f0a85986913242090d58db1e2022d50e46e580f2e40f669fea5f1
SSDEEP

6144:wrJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDj:wrfu6/eIo4jVW5soVCcQovoO0DJM+Eo

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  bc2708fed09abbf2bf6ffebee8350b2adb6312dd2f3b25062652e865163d6623
- Size
  
  313KB
- MD5
  
  919eb2642abc2094f187e21a09ae7f5f
- SHA1
  
  a5b19e1ca642a34850c944137d4732e88b314fc4
- SHA256
  
  bc2708fed09abbf2bf6ffebee8350b2adb6312dd2f3b25062652e865163d6623
- SHA512
  
  3822d64baebd1ab61753ec46329be50969416da89a1b938d638a2c4ece76249d2ce91021a99f0a85986913242090d58db1e2022d50e46e580f2e40f669fea5f1
- SSDEEP
  
  6144:wrJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDj:wrfu6/eIo4jVW5soVCcQovoO0DJM+Eo
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2