0bc675fd1b8896d951a360e2527d1ec9230ac502cc8a335b48c7f6eb271a3991 | Triage

Sharing

General

Target

0bc675fd1b8896d951a360e2527d1ec9230ac502cc8a335b48c7f6eb271a3991
Size

331KB
Sample

221127-lkn2zaff76
MD5

d3a76f311d27dbe36c4c34dbdaca5976
SHA1

4770d718f1cb1810e12c5c685729e9b0becf6bfb
SHA256

0bc675fd1b8896d951a360e2527d1ec9230ac502cc8a335b48c7f6eb271a3991
SHA512

f8539fbcbf59ddab5a5d592af63f66bf9b5e3622d1aa78b9290eed3d5abbee4602c81baf088d8cb6ccb6951dd67b3f98bee3846cfef0225025c22acfd1af48f0
SSDEEP

6144:Xrwg9uEo2S1YnQmCX492DkwNP3qpYFjl6Xy/kQHMQoV8Dt4i4cbuBU5X03oHWGkp:XrFu6/eIo4TXekQUSBh46n5jWGkgrVmh

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0bc675fd1b8896d951a360e2527d1ec9230ac502cc8a335b48c7f6eb271a3991
- Size
  
  331KB
- MD5
  
  d3a76f311d27dbe36c4c34dbdaca5976
- SHA1
  
  4770d718f1cb1810e12c5c685729e9b0becf6bfb
- SHA256
  
  0bc675fd1b8896d951a360e2527d1ec9230ac502cc8a335b48c7f6eb271a3991
- SHA512
  
  f8539fbcbf59ddab5a5d592af63f66bf9b5e3622d1aa78b9290eed3d5abbee4602c81baf088d8cb6ccb6951dd67b3f98bee3846cfef0225025c22acfd1af48f0
- SSDEEP
  
  6144:Xrwg9uEo2S1YnQmCX492DkwNP3qpYFjl6Xy/kQHMQoV8Dt4i4cbuBU5X03oHWGkp:XrFu6/eIo4TXekQUSBh46n5jWGkgrVmh
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2