50b5025d1f9b419a0e2c083126e203ffbc0315e0aa9499d5a331b5753d2847e2 | Triage

Sharing

General

Target

0952200ea6a999ccc119dfe234eb01a7
Size

313KB
Sample

231224-wc6bdsdbc3
MD5

0952200ea6a999ccc119dfe234eb01a7
SHA1

c9678e9968cfe7e348eff72f4c69e2952df5d765
SHA256

50b5025d1f9b419a0e2c083126e203ffbc0315e0aa9499d5a331b5753d2847e2
SHA512

df272095498b915c4cbf76ce4ba94740d859b6ff747a8aceb84dd7dc6f7b416a1e38b99bd1ce046fbc16b090e696761eb4087f7ff98410379d9e5a563a7be784
SSDEEP

6144:HrV+6Y0JQBkQRl7174NpNUM+UHs+RGIZZCunCNROUawjhDMJwD07:HrV+63yRl1uqM+gs+bLC8CNMUaohDMJ9

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0952200ea6a999ccc119dfe234eb01a7
- Size
  
  313KB
- MD5
  
  0952200ea6a999ccc119dfe234eb01a7
- SHA1
  
  c9678e9968cfe7e348eff72f4c69e2952df5d765
- SHA256
  
  50b5025d1f9b419a0e2c083126e203ffbc0315e0aa9499d5a331b5753d2847e2
- SHA512
  
  df272095498b915c4cbf76ce4ba94740d859b6ff747a8aceb84dd7dc6f7b416a1e38b99bd1ce046fbc16b090e696761eb4087f7ff98410379d9e5a563a7be784
- SSDEEP
  
  6144:HrV+6Y0JQBkQRl7174NpNUM+UHs+RGIZZCunCNROUawjhDMJwD07:HrV+63yRl1uqM+gs+bLC8CNMUaohDMJ9
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2