fa447591924895e5f0936d85dda60b327792e47fc34ae9c56b1b3fba4267ff36 | Triage

Sharing

General

Target

fa447591924895e5f0936d85dda60b327792e47fc34ae9c56b1b3fba4267ff36
Size

304KB
Sample

221128-az85xaff3s
MD5

6697890568d19ea5fe33a4802cc67d08
SHA1

fc129edc3bc075c796c2aea0b58c2991e74906b7
SHA256

fa447591924895e5f0936d85dda60b327792e47fc34ae9c56b1b3fba4267ff36
SHA512

f40fbc51d5759b99e7ccd48660b08e7de0c4d2be5ee078c5ef977d363ce40be495b636d18d3b3c16a3e85fa0c3ea6af684c0f2fb2a43d310854ef13b0d22bb1a
SSDEEP

6144:VrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPZ:Vrkuu6/eIo4tQW62T+uTwM6YVxm24Z

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fa447591924895e5f0936d85dda60b327792e47fc34ae9c56b1b3fba4267ff36
- Size
  
  304KB
- MD5
  
  6697890568d19ea5fe33a4802cc67d08
- SHA1
  
  fc129edc3bc075c796c2aea0b58c2991e74906b7
- SHA256
  
  fa447591924895e5f0936d85dda60b327792e47fc34ae9c56b1b3fba4267ff36
- SHA512
  
  f40fbc51d5759b99e7ccd48660b08e7de0c4d2be5ee078c5ef977d363ce40be495b636d18d3b3c16a3e85fa0c3ea6af684c0f2fb2a43d310854ef13b0d22bb1a
- SSDEEP
  
  6144:VrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPZ:Vrkuu6/eIo4tQW62T+uTwM6YVxm24Z
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2