9d9a9662f3519f888e812ffbe535abadff2516d3460781f28a48ee40270540ec | Triage

Sharing

General

Target

9d9a9662f3519f888e812ffbe535abadff2516d3460781f28a48ee40270540ec
Size

326KB
Sample

221127-zdx8ysbh9v
MD5

be8ad282c6b18423a7a6178838515d66
SHA1

26ec90a4a0953aa1f92d8dc4591bfb32650c8811
SHA256

9d9a9662f3519f888e812ffbe535abadff2516d3460781f28a48ee40270540ec
SHA512

976f1e0f627a9ab378431f2e2f22c13f67c8535e24a5b056c50035404bd71ce2fb319d7d66c795522c5784b89c8f41ff293aaf2bc18fdce34cb6ca086bb5bbe9
SSDEEP

6144:Kr4I9uEo2S1YnQmCX492DkwNP3qpYFuT9U1FZA5MRwxuhhfch6clgC:Kr4gu6/eIo4nULZKMRwxuPfk66

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  9d9a9662f3519f888e812ffbe535abadff2516d3460781f28a48ee40270540ec
- Size
  
  326KB
- MD5
  
  be8ad282c6b18423a7a6178838515d66
- SHA1
  
  26ec90a4a0953aa1f92d8dc4591bfb32650c8811
- SHA256
  
  9d9a9662f3519f888e812ffbe535abadff2516d3460781f28a48ee40270540ec
- SHA512
  
  976f1e0f627a9ab378431f2e2f22c13f67c8535e24a5b056c50035404bd71ce2fb319d7d66c795522c5784b89c8f41ff293aaf2bc18fdce34cb6ca086bb5bbe9
- SSDEEP
  
  6144:Kr4I9uEo2S1YnQmCX492DkwNP3qpYFuT9U1FZA5MRwxuhhfch6clgC:Kr4gu6/eIo4nULZKMRwxuPfk66
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2