1380699defef82778f25968a4a5b239887e457cbb8ef29c7e38658128a611acb | Triage

Sharing

General

Target

085a72bcbb97abd95c4cee7d0181dc8f
Size

313KB
Sample

231225-f9n6dahad3
MD5

085a72bcbb97abd95c4cee7d0181dc8f
SHA1

8a57a9e9583fd21e3adacd116b28a27174ba06cb
SHA256

1380699defef82778f25968a4a5b239887e457cbb8ef29c7e38658128a611acb
SHA512

258bc0966f80287e36f78413aab682559db69aac97a1920773e3f3d30af3f719af624243221cffa08267c53dbaf8392eba258aedcd8e12b8eef64cfbc9f47d3a
SSDEEP

6144:wrJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDD:wrfu6/eIo4jVW5soVCcQovoO0DJM+EE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  085a72bcbb97abd95c4cee7d0181dc8f
- Size
  
  313KB
- MD5
  
  085a72bcbb97abd95c4cee7d0181dc8f
- SHA1
  
  8a57a9e9583fd21e3adacd116b28a27174ba06cb
- SHA256
  
  1380699defef82778f25968a4a5b239887e457cbb8ef29c7e38658128a611acb
- SHA512
  
  258bc0966f80287e36f78413aab682559db69aac97a1920773e3f3d30af3f719af624243221cffa08267c53dbaf8392eba258aedcd8e12b8eef64cfbc9f47d3a
- SSDEEP
  
  6144:wrJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDD:wrfu6/eIo4jVW5soVCcQovoO0DJM+EE
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2