79bc65a5a237ed83d314b7b831beba5edb91b4ab687985b616417b9e2f1eebe8 | Triage

Sharing

General

Target

79bc65a5a237ed83d314b7b831beba5edb91b4ab687985b616417b9e2f1eebe8
Size

618KB
Sample

221127-d5xwlsff87
MD5

b9acf9954f0bf17ef0ef4fb1f3c20b1b
SHA1

8b565fed20701dde7359eb990ce1d2e6aa7843d2
SHA256

79bc65a5a237ed83d314b7b831beba5edb91b4ab687985b616417b9e2f1eebe8
SHA512

72f97ceff6696d92975fd6895f3c68dca86dd3587ae4b1acdd73e18d5c077df44115051e30a7eded6254606c0187c22feefbd8b6319b1a48a263b34524020db6
SSDEEP

12288:frrjkogdCi7WNwx9l8oEGkuveY39Bn3Y4z9GiC0bZ6SBDAT:4ogvWNwmDuXnnI4zUiC09wT

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  79bc65a5a237ed83d314b7b831beba5edb91b4ab687985b616417b9e2f1eebe8
- Size
  
  618KB
- MD5
  
  b9acf9954f0bf17ef0ef4fb1f3c20b1b
- SHA1
  
  8b565fed20701dde7359eb990ce1d2e6aa7843d2
- SHA256
  
  79bc65a5a237ed83d314b7b831beba5edb91b4ab687985b616417b9e2f1eebe8
- SHA512
  
  72f97ceff6696d92975fd6895f3c68dca86dd3587ae4b1acdd73e18d5c077df44115051e30a7eded6254606c0187c22feefbd8b6319b1a48a263b34524020db6
- SSDEEP
  
  12288:frrjkogdCi7WNwx9l8oEGkuveY39Bn3Y4z9GiC0bZ6SBDAT:4ogvWNwmDuXnnI4zUiC09wT
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2