b2d9722ca8a71c30d3d6aca0cf7da49ef1bfd6c3bb1caee47d673c2f781de86b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2d9722ca8a71c30d3d6aca0cf7da49ef1bfd6c3bb1caee47d673c2f781de86b
Size

313KB
Sample

221127-x2fmpsgb9s
MD5

ec945a514d930719d7b8bb46670dd194
SHA1

8465ac7b80ea5b990579db1fe34c21c4b6ed7cda
SHA256

b2d9722ca8a71c30d3d6aca0cf7da49ef1bfd6c3bb1caee47d673c2f781de86b
SHA512

d799bd41cee4371528a6ed3b40b117d61dd9e977561842996c7f73940d209bfcb088b4e0346688fc511b266b629f9827d3e280409a83e9eb6013b2f4390597b3
SSDEEP

6144:CrkP9uEo2S1YnQmCX492DkwNP3qpYFpdteedaMtBxOWUevASojincBSE:CrkFu6/eIo4mdt2M/lUevAzicb

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b2d9722ca8a71c30d3d6aca0cf7da49ef1bfd6c3bb1caee47d673c2f781de86b
- Size
  
  313KB
- MD5
  
  ec945a514d930719d7b8bb46670dd194
- SHA1
  
  8465ac7b80ea5b990579db1fe34c21c4b6ed7cda
- SHA256
  
  b2d9722ca8a71c30d3d6aca0cf7da49ef1bfd6c3bb1caee47d673c2f781de86b
- SHA512
  
  d799bd41cee4371528a6ed3b40b117d61dd9e977561842996c7f73940d209bfcb088b4e0346688fc511b266b629f9827d3e280409a83e9eb6013b2f4390597b3
- SSDEEP
  
  6144:CrkP9uEo2S1YnQmCX492DkwNP3qpYFpdteedaMtBxOWUevASojincBSE:CrkFu6/eIo4mdt2M/lUevAzicb
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2