bc1a995d84953d96cf2e446fe856f57af2d5c2608db665a81c3e7d8a6aad2473 | Triage

Sharing

General

Target

bc1a995d84953d96cf2e446fe856f57af2d5c2608db665a81c3e7d8a6aad2473
Size

327KB
Sample

221125-y5yhcsff5z
MD5

817e8ba6b564ca2899a36749db8c2396
SHA1

35da22cd09e1925c8e61ce962d351e5cfb120b4f
SHA256

bc1a995d84953d96cf2e446fe856f57af2d5c2608db665a81c3e7d8a6aad2473
SHA512

9ba35f49e06ed1a4a476e37bcf32beac82bda60fcfa0ae86310f2d31f12f106efea9613c39f21256609232893047ee05730b90a691564c76d2ea3f09dc4ce257
SSDEEP

6144:Jr4f9uEo2S1YnQmCX492DkwNP3qpYFAvZm2iODkqdNho9a8eua1BQ9GXk4HVqWR:Jr4Vu6/eIo41Zm2qo8UckXDVqWR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  bc1a995d84953d96cf2e446fe856f57af2d5c2608db665a81c3e7d8a6aad2473
- Size
  
  327KB
- MD5
  
  817e8ba6b564ca2899a36749db8c2396
- SHA1
  
  35da22cd09e1925c8e61ce962d351e5cfb120b4f
- SHA256
  
  bc1a995d84953d96cf2e446fe856f57af2d5c2608db665a81c3e7d8a6aad2473
- SHA512
  
  9ba35f49e06ed1a4a476e37bcf32beac82bda60fcfa0ae86310f2d31f12f106efea9613c39f21256609232893047ee05730b90a691564c76d2ea3f09dc4ce257
- SSDEEP
  
  6144:Jr4f9uEo2S1YnQmCX492DkwNP3qpYFAvZm2iODkqdNho9a8eua1BQ9GXk4HVqWR:Jr4Vu6/eIo41Zm2qo8UckXDVqWR
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2