052fb311740ae04a0ade1401a1a9312db0e7f1d8f1602950eda24498e624354c | Triage

Sharing

General

Target

21d3f9689561df6f1111c30c2681555f
Size

327KB
Sample

231231-av4pmafdhk
MD5

21d3f9689561df6f1111c30c2681555f
SHA1

932843a307487852cc76f340808ec0763ac529d5
SHA256

052fb311740ae04a0ade1401a1a9312db0e7f1d8f1602950eda24498e624354c
SHA512

8a28071c506cfba2e27c04ca32e5dbc82cd64f1a1db7b74b47ad2394d88ee62b0f1afaf01891f093d524259d5e5bf182900f7e92dda06638bb2a016d6bc0486b
SSDEEP

6144:Zr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fr:Zr4iu6/eIo4Rsw33AtsmQ6

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  21d3f9689561df6f1111c30c2681555f
- Size
  
  327KB
- MD5
  
  21d3f9689561df6f1111c30c2681555f
- SHA1
  
  932843a307487852cc76f340808ec0763ac529d5
- SHA256
  
  052fb311740ae04a0ade1401a1a9312db0e7f1d8f1602950eda24498e624354c
- SHA512
  
  8a28071c506cfba2e27c04ca32e5dbc82cd64f1a1db7b74b47ad2394d88ee62b0f1afaf01891f093d524259d5e5bf182900f7e92dda06638bb2a016d6bc0486b
- SSDEEP
  
  6144:Zr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fr:Zr4iu6/eIo4Rsw33AtsmQ6
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2