23578b96612bac3403a6e4425c4d849c376f7bd12cf2deb1a990c783e1d7ef34 | Triage

Sharing

General

Target

6fac2c2b061f5a6c566e17fde1856e64
Size

326KB
Sample

240122-rxz8naghgj
MD5

6fac2c2b061f5a6c566e17fde1856e64
SHA1

ea975d941f6091e6c1690a87682c194de3f8251d
SHA256

23578b96612bac3403a6e4425c4d849c376f7bd12cf2deb1a990c783e1d7ef34
SHA512

8aa498e3780fa62b88025454a19fed9bceeabe5d657900fd6c98cef4a0f847ff85e5a11a5f5df69a5f006db92a7a18b89aa4b65317a0560a24e37d3aaf2599ee
SSDEEP

6144:Kr4I9uEo2S1YnQmCX492DkwNP3qpYFuT9U1FZA5MRwxuhhfch6clg5:Kr4gu6/eIo4nULZKMRwxuPfk6R

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6fac2c2b061f5a6c566e17fde1856e64
- Size
  
  326KB
- MD5
  
  6fac2c2b061f5a6c566e17fde1856e64
- SHA1
  
  ea975d941f6091e6c1690a87682c194de3f8251d
- SHA256
  
  23578b96612bac3403a6e4425c4d849c376f7bd12cf2deb1a990c783e1d7ef34
- SHA512
  
  8aa498e3780fa62b88025454a19fed9bceeabe5d657900fd6c98cef4a0f847ff85e5a11a5f5df69a5f006db92a7a18b89aa4b65317a0560a24e37d3aaf2599ee
- SSDEEP
  
  6144:Kr4I9uEo2S1YnQmCX492DkwNP3qpYFuT9U1FZA5MRwxuhhfch6clg5:Kr4gu6/eIo4nULZKMRwxuPfk6R
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2