989f1e3dfadaa653d2a45fc545d219ed0b87a71710177e91b05893118ccfcbce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

989f1e3dfadaa653d2a45fc545d219ed0b87a71710177e91b05893118ccfcbce
Size

311KB
Sample

221204-q4dgssdh85
MD5

60ebce93aacb3441e8e0241db916ba20
SHA1

d153815861f6ff93049804b152884170345f2a1e
SHA256

989f1e3dfadaa653d2a45fc545d219ed0b87a71710177e91b05893118ccfcbce
SHA512

c7539fa01589bb517c2decd6eb7861bf617b703fc2bb0d9408b43161f476048c75ee9bb57b1c8b63a618c85f12f98a199b2fec67827ad286e5336570d5b3858f
SSDEEP

6144:SrVu6Y0JQBkQRl7174NpNUM+UHs+Jk5yZ0hbJDSKxFr13:SrVu63yRl1uqM+gs++UZ0hbJDrJ13

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  989f1e3dfadaa653d2a45fc545d219ed0b87a71710177e91b05893118ccfcbce
- Size
  
  311KB
- MD5
  
  60ebce93aacb3441e8e0241db916ba20
- SHA1
  
  d153815861f6ff93049804b152884170345f2a1e
- SHA256
  
  989f1e3dfadaa653d2a45fc545d219ed0b87a71710177e91b05893118ccfcbce
- SHA512
  
  c7539fa01589bb517c2decd6eb7861bf617b703fc2bb0d9408b43161f476048c75ee9bb57b1c8b63a618c85f12f98a199b2fec67827ad286e5336570d5b3858f
- SSDEEP
  
  6144:SrVu6Y0JQBkQRl7174NpNUM+UHs+Jk5yZ0hbJDSKxFr13:SrVu63yRl1uqM+gs++UZ0hbJDrJ13
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2