d8f63efadfc33a57b62a2d1fa656b0c66f59410e0b31462b0cf7ca6f60614c05 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d8f63efadfc33a57b62a2d1fa656b0c66f59410e0b31462b0cf7ca6f60614c05
Size

304KB
Sample

221125-zknm4agh4z
MD5

731f42b01f8fb52d7e7e6f80d4f9c07c
SHA1

cc173a90c821682598160d1f8270875ecc562b29
SHA256

d8f63efadfc33a57b62a2d1fa656b0c66f59410e0b31462b0cf7ca6f60614c05
SHA512

e51eaf57c47ae475aca0f41a7f8ad30dcacb9ba101d4e0ced05e66eca42ca5548b1e685fe4f256c051a281320240a4de8682279af2770de275d13c99a241294d
SSDEEP

6144:drkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPr:drkuu6/eIo4tQW62T+uTwM6YVxm24r

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d8f63efadfc33a57b62a2d1fa656b0c66f59410e0b31462b0cf7ca6f60614c05
- Size
  
  304KB
- MD5
  
  731f42b01f8fb52d7e7e6f80d4f9c07c
- SHA1
  
  cc173a90c821682598160d1f8270875ecc562b29
- SHA256
  
  d8f63efadfc33a57b62a2d1fa656b0c66f59410e0b31462b0cf7ca6f60614c05
- SHA512
  
  e51eaf57c47ae475aca0f41a7f8ad30dcacb9ba101d4e0ced05e66eca42ca5548b1e685fe4f256c051a281320240a4de8682279af2770de275d13c99a241294d
- SSDEEP
  
  6144:drkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPr:drkuu6/eIo4tQW62T+uTwM6YVxm24r
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2