8a4ec7726cf8985bd3f7287f8f183ed1e1f19608aa872637ff07058eb3303ba3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8a4ec7726cf8985bd3f7287f8f183ed1e1f19608aa872637ff07058eb3303ba3
Size

313KB
Sample

221127-h8dpcsdb7z
MD5

a904140778ae655763ce0acb268ae85f
SHA1

d9177b4c68899728de7c65796be2e7a47421fdee
SHA256

8a4ec7726cf8985bd3f7287f8f183ed1e1f19608aa872637ff07058eb3303ba3
SHA512

86164c1fa13b93d63e97a7cc858eef7992fbd7cb02e6e97ff54f00e7ec1ed57d5e1a9ed6c6f7b825a34b728695772dedea76e5bd58504dc48d6a1020cd6e984f
SSDEEP

6144:Brb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoM2:BrRu6/eIo4t3PuFITKUA5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8a4ec7726cf8985bd3f7287f8f183ed1e1f19608aa872637ff07058eb3303ba3
- Size
  
  313KB
- MD5
  
  a904140778ae655763ce0acb268ae85f
- SHA1
  
  d9177b4c68899728de7c65796be2e7a47421fdee
- SHA256
  
  8a4ec7726cf8985bd3f7287f8f183ed1e1f19608aa872637ff07058eb3303ba3
- SHA512
  
  86164c1fa13b93d63e97a7cc858eef7992fbd7cb02e6e97ff54f00e7ec1ed57d5e1a9ed6c6f7b825a34b728695772dedea76e5bd58504dc48d6a1020cd6e984f
- SSDEEP
  
  6144:Brb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoM2:BrRu6/eIo4t3PuFITKUA5
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2