f5194d1dcc62a1a9d0ea928bfe6c0d42ca9aa9a7212eca0ea8c722c505eb215f | Triage

Sharing

General

Target

f5194d1dcc62a1a9d0ea928bfe6c0d42ca9aa9a7212eca0ea8c722c505eb215f
Size

326KB
Sample

221127-3eaqtsbh5v
MD5

a85b0d41230ed7bb4e23d232a2fe390d
SHA1

ee05779d9a7b9a13f3bcd85578fd09b9eb49288f
SHA256

f5194d1dcc62a1a9d0ea928bfe6c0d42ca9aa9a7212eca0ea8c722c505eb215f
SHA512

7aca159c15d4c50554b3ccd5e198ac73a104097f4db35f217d7b0f5acf719d2b48039b2b3b4405438e857ff1647572f94c49ea0735b8d8f89e1c50c32afbce11
SSDEEP

6144:BrIbUzkuvcBYC47l2xoieMtgDD3hRKTVG5PTErqgD9+79qofMVbXj8P:BrNkuveY3XqTw5P6g7o0MI

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f5194d1dcc62a1a9d0ea928bfe6c0d42ca9aa9a7212eca0ea8c722c505eb215f
- Size
  
  326KB
- MD5
  
  a85b0d41230ed7bb4e23d232a2fe390d
- SHA1
  
  ee05779d9a7b9a13f3bcd85578fd09b9eb49288f
- SHA256
  
  f5194d1dcc62a1a9d0ea928bfe6c0d42ca9aa9a7212eca0ea8c722c505eb215f
- SHA512
  
  7aca159c15d4c50554b3ccd5e198ac73a104097f4db35f217d7b0f5acf719d2b48039b2b3b4405438e857ff1647572f94c49ea0735b8d8f89e1c50c32afbce11
- SSDEEP
  
  6144:BrIbUzkuvcBYC47l2xoieMtgDD3hRKTVG5PTErqgD9+79qofMVbXj8P:BrNkuveY3XqTw5P6g7o0MI
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2