ad1bb95478ba22aef690aac8605e6d1319d243a3408096ea4853b818791896d5 | Triage

Sharing

General

Target

ad1bb95478ba22aef690aac8605e6d1319d243a3408096ea4853b818791896d5
Size

313KB
Sample

221128-gak54sdh8t
MD5

107ba94528a6a4ec38266a48db5137c2
SHA1

466b7df00c404baa1d5fb75d1c748325db1853ce
SHA256

ad1bb95478ba22aef690aac8605e6d1319d243a3408096ea4853b818791896d5
SHA512

a3c16c0b4cfd49725a3aa8b07a9d6ed1ac55d3dbe9d1ec313debbbef9d3dacf2dcbc42b067c541e9401f640978e96b31c374996b49c4e07ee548fe2e9f4ac6d9
SSDEEP

6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijY5:Ark4u6/eIo4nlu7trxFtApfgMyrpjY5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ad1bb95478ba22aef690aac8605e6d1319d243a3408096ea4853b818791896d5
- Size
  
  313KB
- MD5
  
  107ba94528a6a4ec38266a48db5137c2
- SHA1
  
  466b7df00c404baa1d5fb75d1c748325db1853ce
- SHA256
  
  ad1bb95478ba22aef690aac8605e6d1319d243a3408096ea4853b818791896d5
- SHA512
  
  a3c16c0b4cfd49725a3aa8b07a9d6ed1ac55d3dbe9d1ec313debbbef9d3dacf2dcbc42b067c541e9401f640978e96b31c374996b49c4e07ee548fe2e9f4ac6d9
- SSDEEP
  
  6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijY5:Ark4u6/eIo4nlu7trxFtApfgMyrpjY5
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2