db57cf9937f3c848c3ee95652acf3e9cd21d929d98d20dd87fff06ac43ce3286 | Triage

Sharing

General

Target

db57cf9937f3c848c3ee95652acf3e9cd21d929d98d20dd87fff06ac43ce3286
Size

323KB
Sample

221125-y1gztacd84
MD5

406a5d1e938d46f9eb3efac32ccaf712
SHA1

e0f26b0963c2fac254b9c91d587317df3c734ebf
SHA256

db57cf9937f3c848c3ee95652acf3e9cd21d929d98d20dd87fff06ac43ce3286
SHA512

4fb015aa05fdf880c8a397915d99d5b0eb74049d7786d0a9684cef7c665c34c090957c2770164d368d3ef410ffa6d7802127468122d23c0f3447e44f9d0319d4
SSDEEP

6144:4rV99uEo2S1YnQmCX492DkwNP3qpYFXTqttBv2tHlzLkFyhFOY4vHSMrA:4rVDu6/eIo4YOtEyc55Ms

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  db57cf9937f3c848c3ee95652acf3e9cd21d929d98d20dd87fff06ac43ce3286
- Size
  
  323KB
- MD5
  
  406a5d1e938d46f9eb3efac32ccaf712
- SHA1
  
  e0f26b0963c2fac254b9c91d587317df3c734ebf
- SHA256
  
  db57cf9937f3c848c3ee95652acf3e9cd21d929d98d20dd87fff06ac43ce3286
- SHA512
  
  4fb015aa05fdf880c8a397915d99d5b0eb74049d7786d0a9684cef7c665c34c090957c2770164d368d3ef410ffa6d7802127468122d23c0f3447e44f9d0319d4
- SSDEEP
  
  6144:4rV99uEo2S1YnQmCX492DkwNP3qpYFXTqttBv2tHlzLkFyhFOY4vHSMrA:4rVDu6/eIo4YOtEyc55Ms
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2