faa8370a7f131b47236afd18da16e3235f9372b5f18d7f8028a1eeb06cbbc5d6 | Triage

Sharing

General

Target

faa8370a7f131b47236afd18da16e3235f9372b5f18d7f8028a1eeb06cbbc5d6
Size

313KB
Sample

221127-3czxyafg58
MD5

e71a4e500c69770a6ca350a6ff1553d2
SHA1

959f355c3059e572f1206ddfa9f2d6332621de0f
SHA256

faa8370a7f131b47236afd18da16e3235f9372b5f18d7f8028a1eeb06cbbc5d6
SHA512

15c3cd8cd314ef04f089662a619eab093d4c7cace9567381832f5c03cacf9cbc5b321dd73958463458d4c02428f6147ff8a4da669dadd345dcc78d47b45c328e
SSDEEP

6144:MrK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0L3:Mryu6/eIo4vMResyEf0uP9d9UG03

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  faa8370a7f131b47236afd18da16e3235f9372b5f18d7f8028a1eeb06cbbc5d6
- Size
  
  313KB
- MD5
  
  e71a4e500c69770a6ca350a6ff1553d2
- SHA1
  
  959f355c3059e572f1206ddfa9f2d6332621de0f
- SHA256
  
  faa8370a7f131b47236afd18da16e3235f9372b5f18d7f8028a1eeb06cbbc5d6
- SHA512
  
  15c3cd8cd314ef04f089662a619eab093d4c7cace9567381832f5c03cacf9cbc5b321dd73958463458d4c02428f6147ff8a4da669dadd345dcc78d47b45c328e
- SSDEEP
  
  6144:MrK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0L3:Mryu6/eIo4vMResyEf0uP9d9UG03
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2