d56b98bc2a53ef20866bcbadba56923b613bd88fd4a4cd6968414c54d5291269 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d56b98bc2a53ef20866bcbadba56923b613bd88fd4a4cd6968414c54d5291269
Size

315KB
Sample

221127-he6haafe58
MD5

e728f2c52e09f0bdc0bf6217eeb1a3e0
SHA1

acba999320e78c3ee2cfcdd4ec101e85e807ba09
SHA256

d56b98bc2a53ef20866bcbadba56923b613bd88fd4a4cd6968414c54d5291269
SHA512

d2c92940fcef276a0050e9d1853b645a45511e6332f8f9f9f70ff3bdecb2beedc0985d6da21787707f080f449bd198282aab76cdb15516a714b37ef5ecf8d882
SSDEEP

6144:srYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZr:srdkuveY3CvI5Zdkj6OEu1HSr

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d56b98bc2a53ef20866bcbadba56923b613bd88fd4a4cd6968414c54d5291269
- Size
  
  315KB
- MD5
  
  e728f2c52e09f0bdc0bf6217eeb1a3e0
- SHA1
  
  acba999320e78c3ee2cfcdd4ec101e85e807ba09
- SHA256
  
  d56b98bc2a53ef20866bcbadba56923b613bd88fd4a4cd6968414c54d5291269
- SHA512
  
  d2c92940fcef276a0050e9d1853b645a45511e6332f8f9f9f70ff3bdecb2beedc0985d6da21787707f080f449bd198282aab76cdb15516a714b37ef5ecf8d882
- SSDEEP
  
  6144:srYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZr:srdkuveY3CvI5Zdkj6OEu1HSr
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2