d68c631c77086d70dd8b84b1770a5b8d42a03165047d9199b7a5ddc899e666c1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d68c631c77086d70dd8b84b1770a5b8d42a03165047d9199b7a5ddc899e666c1
Size

314KB
Sample

221125-y12n8afc71
MD5

8bf20169c0b54b583a3960ac1d61910f
SHA1

1af28ae5f47dcd4483f51274323e61f84a5f1f1e
SHA256

d68c631c77086d70dd8b84b1770a5b8d42a03165047d9199b7a5ddc899e666c1
SHA512

106b5eb13f96a506c21da0f4987ff1f8bd42d153d53aec5e04b78507b71afd6d41076f4cab331e088a777bea64804e83bc463195ebb9e6a9feb1ed5a7285d575
SSDEEP

6144:QrAbUzkuvcBYC47l2xn88NEymFTYO67qzVxzRRwZ:Qr1kuveY35YO67Wxz7wZ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d68c631c77086d70dd8b84b1770a5b8d42a03165047d9199b7a5ddc899e666c1
- Size
  
  314KB
- MD5
  
  8bf20169c0b54b583a3960ac1d61910f
- SHA1
  
  1af28ae5f47dcd4483f51274323e61f84a5f1f1e
- SHA256
  
  d68c631c77086d70dd8b84b1770a5b8d42a03165047d9199b7a5ddc899e666c1
- SHA512
  
  106b5eb13f96a506c21da0f4987ff1f8bd42d153d53aec5e04b78507b71afd6d41076f4cab331e088a777bea64804e83bc463195ebb9e6a9feb1ed5a7285d575
- SSDEEP
  
  6144:QrAbUzkuvcBYC47l2xn88NEymFTYO67qzVxzRRwZ:Qr1kuveY35YO67Wxz7wZ
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2