2df7f2392fb7bdea8f9b99350b51d144863486081bf723e24502786ec26309b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2df7f2392fb7bdea8f9b99350b51d144863486081bf723e24502786ec26309b1
Size

303KB
Sample

221206-tvqbsagd3s
MD5

db4076128b250797af0222902d3a1cfd
SHA1

05c981a621fa9605a1085551bc4ef6b3e46650d8
SHA256

2df7f2392fb7bdea8f9b99350b51d144863486081bf723e24502786ec26309b1
SHA512

83c023d2de4cf9b0ce2d80340d9f797bcedd2130b7654faf6b23a44d5e3a748c12875d60a385e48768f4625667ebd5ee601be1c2ab80bf1ac97d124eeefdd3ab
SSDEEP

6144:1rkp9uEo2S1YnQmCX492DkwNP3qpYFqrtZJ9jEvyQzjBR2JYRcK7uY3:1rk/u6/eIo49PJ9YvBzlz

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2df7f2392fb7bdea8f9b99350b51d144863486081bf723e24502786ec26309b1
- Size
  
  303KB
- MD5
  
  db4076128b250797af0222902d3a1cfd
- SHA1
  
  05c981a621fa9605a1085551bc4ef6b3e46650d8
- SHA256
  
  2df7f2392fb7bdea8f9b99350b51d144863486081bf723e24502786ec26309b1
- SHA512
  
  83c023d2de4cf9b0ce2d80340d9f797bcedd2130b7654faf6b23a44d5e3a748c12875d60a385e48768f4625667ebd5ee601be1c2ab80bf1ac97d124eeefdd3ab
- SSDEEP
  
  6144:1rkp9uEo2S1YnQmCX492DkwNP3qpYFqrtZJ9jEvyQzjBR2JYRcK7uY3:1rk/u6/eIo49PJ9YvBzlz
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2