f48a87f0818af7a8e8c134dcbebcfda564d5a452455f016eee7c9787a88cf998 | Triage

Sharing

General

Target

f48a87f0818af7a8e8c134dcbebcfda564d5a452455f016eee7c9787a88cf998
Size

316KB
Sample

221127-1lanasfa6s
MD5

9a28736d5b988ac60369b36a23ab0410
SHA1

4fe2cbd0b440c07342c5d9f30c7a13f025d1028b
SHA256

f48a87f0818af7a8e8c134dcbebcfda564d5a452455f016eee7c9787a88cf998
SHA512

4ec6b3d0e571a70dd92b763721ad40e7500b169e2f1587e477d1df1d3b9f0b7d899bd217c4527ba6ab805cc85d98a72cda69a47687a0b113a978e77d934c60a1
SSDEEP

6144:WrYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZN:WrdkuveY3CvI5Zdkj6OEu1HSN

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f48a87f0818af7a8e8c134dcbebcfda564d5a452455f016eee7c9787a88cf998
- Size
  
  316KB
- MD5
  
  9a28736d5b988ac60369b36a23ab0410
- SHA1
  
  4fe2cbd0b440c07342c5d9f30c7a13f025d1028b
- SHA256
  
  f48a87f0818af7a8e8c134dcbebcfda564d5a452455f016eee7c9787a88cf998
- SHA512
  
  4ec6b3d0e571a70dd92b763721ad40e7500b169e2f1587e477d1df1d3b9f0b7d899bd217c4527ba6ab805cc85d98a72cda69a47687a0b113a978e77d934c60a1
- SSDEEP
  
  6144:WrYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZN:WrdkuveY3CvI5Zdkj6OEu1HSN
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2