035f10ba1facda146704079dd4c29ed15ab56973db39912bbc5cd37a1fccfa50 | Triage

Sharing

General

Target

035f10ba1facda146704079dd4c29ed15ab56973db39912bbc5cd37a1fccfa50
Size

303KB
Sample

221206-t5bw5sec29
MD5

43c203056f82bb51ffdf32806303b6d7
SHA1

168ed988b8ef86b4e0e2ce0027dfc3a222eb7c15
SHA256

035f10ba1facda146704079dd4c29ed15ab56973db39912bbc5cd37a1fccfa50
SHA512

3a8e741c391b8934e86664e48efe78955bd1e2ff00563fa9216acf76bf6016953b7fe1de28014b565bf863a9afed57116a13ba5c7a83d9e61b41a0d5f6a10ed4
SSDEEP

6144:vrkp9uEo2S1YnQmCX492DkwNP3qpYFqrtZJ9jEvyQzjBR2JYRcK7uY8:vrk/u6/eIo49PJ9YvBzlQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  035f10ba1facda146704079dd4c29ed15ab56973db39912bbc5cd37a1fccfa50
- Size
  
  303KB
- MD5
  
  43c203056f82bb51ffdf32806303b6d7
- SHA1
  
  168ed988b8ef86b4e0e2ce0027dfc3a222eb7c15
- SHA256
  
  035f10ba1facda146704079dd4c29ed15ab56973db39912bbc5cd37a1fccfa50
- SHA512
  
  3a8e741c391b8934e86664e48efe78955bd1e2ff00563fa9216acf76bf6016953b7fe1de28014b565bf863a9afed57116a13ba5c7a83d9e61b41a0d5f6a10ed4
- SSDEEP
  
  6144:vrkp9uEo2S1YnQmCX492DkwNP3qpYFqrtZJ9jEvyQzjBR2JYRcK7uY8:vrk/u6/eIo49PJ9YvBzlQ
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2