f3e5840dcbf8145fc0732495ebe8efc865c06cd48df4eeab66c1ca4f64a0714d | Triage

Sharing

General

Target

f3e5840dcbf8145fc0732495ebe8efc865c06cd48df4eeab66c1ca4f64a0714d
Size

327KB
Sample

221127-kvf9fadf66
MD5

fd6b1e631d427ef45ec71abe11022a50
SHA1

05b378d88deca6e6a27dedec6e7900f0514f15ad
SHA256

f3e5840dcbf8145fc0732495ebe8efc865c06cd48df4eeab66c1ca4f64a0714d
SHA512

8666ef96805ba3fe84d8dde24bf9311436ff79e94517217f7f6b35691e4b6c30d1c6d124ae1b62c4f96af0155c6f7b194b37a4a59966ddb1834df45e57bef40b
SSDEEP

6144:Jr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fa:Jr4iu6/eIo4Rsw33AtsmQT

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f3e5840dcbf8145fc0732495ebe8efc865c06cd48df4eeab66c1ca4f64a0714d
- Size
  
  327KB
- MD5
  
  fd6b1e631d427ef45ec71abe11022a50
- SHA1
  
  05b378d88deca6e6a27dedec6e7900f0514f15ad
- SHA256
  
  f3e5840dcbf8145fc0732495ebe8efc865c06cd48df4eeab66c1ca4f64a0714d
- SHA512
  
  8666ef96805ba3fe84d8dde24bf9311436ff79e94517217f7f6b35691e4b6c30d1c6d124ae1b62c4f96af0155c6f7b194b37a4a59966ddb1834df45e57bef40b
- SSDEEP
  
  6144:Jr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fa:Jr4iu6/eIo4Rsw33AtsmQT
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2