8a26c44a8a4a4e51cb156d8e0e0d9d0d3baed2c0af9f657add56b5060091d360 | Triage

Sharing

General

Target

8a26c44a8a4a4e51cb156d8e0e0d9d0d3baed2c0af9f657add56b5060091d360
Size

304KB
Sample

221128-a4k9msfh6s
MD5

fbfa3d9dbd86929455ab0b884e53aef5
SHA1

774a095c9dc4343bea042e0eaf7197f23a37d510
SHA256

8a26c44a8a4a4e51cb156d8e0e0d9d0d3baed2c0af9f657add56b5060091d360
SHA512

6c293449c8bff4661e76aaa85de73a82dba7ae1270f0ba53e19050f123845e44ae28007e9c33c54d5379fe005aa78519e4d1b48a260b23ad276b0c67e576360c
SSDEEP

6144:NrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPS:Nrkuu6/eIo4tQW62T+uTwM6YVxm24S

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8a26c44a8a4a4e51cb156d8e0e0d9d0d3baed2c0af9f657add56b5060091d360
- Size
  
  304KB
- MD5
  
  fbfa3d9dbd86929455ab0b884e53aef5
- SHA1
  
  774a095c9dc4343bea042e0eaf7197f23a37d510
- SHA256
  
  8a26c44a8a4a4e51cb156d8e0e0d9d0d3baed2c0af9f657add56b5060091d360
- SHA512
  
  6c293449c8bff4661e76aaa85de73a82dba7ae1270f0ba53e19050f123845e44ae28007e9c33c54d5379fe005aa78519e4d1b48a260b23ad276b0c67e576360c
- SSDEEP
  
  6144:NrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPS:Nrkuu6/eIo4tQW62T+uTwM6YVxm24S
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2