ad96c936cde8e761eb47a0e7ba8c1a892347878cf9f3e5223a7788ba23c2fd48 | Triage

Sharing

General

Target

ad96c936cde8e761eb47a0e7ba8c1a892347878cf9f3e5223a7788ba23c2fd48
Size

332KB
Sample

221128-a2d3jsbd88
MD5

81f26a8951d436eb2f862a5e1f5573fa
SHA1

2ebe95e4ba154478579491b22f8b0f5a3b610900
SHA256

ad96c936cde8e761eb47a0e7ba8c1a892347878cf9f3e5223a7788ba23c2fd48
SHA512

24c70ba8ef288d11ee9340aba1840b90bdb0da1d5fd4e1468b6460e4d1999c5f48698bd60fe5ace9b854e30fca6bfb73ebf4f13ed31b57025fb228593c7ff73a
SSDEEP

6144:HrwB9uEo2S1YnQmCX492DkwNP3qpYFAbM+MDxdAVxvPNFzrkUvlaLQKyPy6HKaJB:HrGu6/eIo4+PejvvlvKyPvq2B

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ad96c936cde8e761eb47a0e7ba8c1a892347878cf9f3e5223a7788ba23c2fd48
- Size
  
  332KB
- MD5
  
  81f26a8951d436eb2f862a5e1f5573fa
- SHA1
  
  2ebe95e4ba154478579491b22f8b0f5a3b610900
- SHA256
  
  ad96c936cde8e761eb47a0e7ba8c1a892347878cf9f3e5223a7788ba23c2fd48
- SHA512
  
  24c70ba8ef288d11ee9340aba1840b90bdb0da1d5fd4e1468b6460e4d1999c5f48698bd60fe5ace9b854e30fca6bfb73ebf4f13ed31b57025fb228593c7ff73a
- SSDEEP
  
  6144:HrwB9uEo2S1YnQmCX492DkwNP3qpYFAbM+MDxdAVxvPNFzrkUvlaLQKyPy6HKaJB:HrGu6/eIo4+PejvvlvKyPvq2B
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2