c006fb0e279e28701e31420381f76efdbbfeacdb2be91b8acb2c6517ff98fa98 | Triage

Sharing

General

Target

05888f90fc558e74b82951339196afce.bin
Size

58.2MB
Sample

231012-vwsc7sdg6z
MD5

05888f90fc558e74b82951339196afce
SHA1

ad1a6f663f3341ea70bdebcc13de3670a0f6cbde
SHA256

c006fb0e279e28701e31420381f76efdbbfeacdb2be91b8acb2c6517ff98fa98
SHA512

94cca1adf383d13c3b4f8c8b08f8241ca375cd31eb7b4e9d79ffc234c8aa18ed9eecc06bfc008d3c6690ae7171da9f570770b74d559b4abeb150783c3b25fb55
SSDEEP

1572864:jw0JkGT++JA6r0EoIjOl4YfDTck93lXGsg4:jp2YhrdjOKGDh9

Score

9^/10

discovery evasion

Malware Config

Targets

- Target
  
  05888f90fc558e74b82951339196afce.bin
- Size
  
  58.2MB
- MD5
  
  05888f90fc558e74b82951339196afce
- SHA1
  
  ad1a6f663f3341ea70bdebcc13de3670a0f6cbde
- SHA256
  
  c006fb0e279e28701e31420381f76efdbbfeacdb2be91b8acb2c6517ff98fa98
- SHA512
  
  94cca1adf383d13c3b4f8c8b08f8241ca375cd31eb7b4e9d79ffc234c8aa18ed9eecc06bfc008d3c6690ae7171da9f570770b74d559b4abeb150783c3b25fb55
- SSDEEP
  
  1572864:jw0JkGT++JA6r0EoIjOl4YfDTck93lXGsg4:jp2YhrdjOKGDh9
Score

9^/10

discovery evasion
- Checks for common network interception software
  Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Software Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion