021160b45eb15c574de282fc4275fce5ece55a553c7128f14fb100cc5624e6e5 | Triage

Sharing

General

Target

021160b45eb15c574de282fc4275fce5ece55a553c7128f14fb100cc5624e6e5
Size

313KB
Sample

221124-nx3f8sbf59
MD5

dd7db79d674f0a4c925ab2574e1d3e88
SHA1

ff43a8aae4bd5f8787a4fdc14f5179003f05102a
SHA256

021160b45eb15c574de282fc4275fce5ece55a553c7128f14fb100cc5624e6e5
SHA512

95eef519de89fce820fb34c1996118b9904c5af3d99a86ca5098f62f30b852e0811d5669f4b594b5c703ef719867eeea25f6a823daafa1c93743a5990851046b
SSDEEP

6144:YrkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijY9:Yrk4u6/eIo4nlu7trxFtApfgMyrpjY9

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  021160b45eb15c574de282fc4275fce5ece55a553c7128f14fb100cc5624e6e5
- Size
  
  313KB
- MD5
  
  dd7db79d674f0a4c925ab2574e1d3e88
- SHA1
  
  ff43a8aae4bd5f8787a4fdc14f5179003f05102a
- SHA256
  
  021160b45eb15c574de282fc4275fce5ece55a553c7128f14fb100cc5624e6e5
- SHA512
  
  95eef519de89fce820fb34c1996118b9904c5af3d99a86ca5098f62f30b852e0811d5669f4b594b5c703ef719867eeea25f6a823daafa1c93743a5990851046b
- SSDEEP
  
  6144:YrkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijY9:Yrk4u6/eIo4nlu7trxFtApfgMyrpjY9
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2