20408f0f4a31def35922663bd5eb706e0e257a4603a88cf5fceb289a7067d2d2 | Triage

Sharing

General

Target

98cab0558e42d020ede1d69f1e3b9598
Size

327KB
Sample

240213-h1v9faca9y
MD5

98cab0558e42d020ede1d69f1e3b9598
SHA1

bdbb16d563cf680f1e7a740711f4e17c9e982113
SHA256

20408f0f4a31def35922663bd5eb706e0e257a4603a88cf5fceb289a7067d2d2
SHA512

b3559169106e1f27c4a4fc10948961c1db680686cf2ca2488b9096250afc4cd3be7846204f97d66f738f6171565eb9fd3d49d47bc67191b979961fe861411843
SSDEEP

6144:Jr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FA:Jr4iu6/eIo4Rsw33AtsmQt

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  98cab0558e42d020ede1d69f1e3b9598
- Size
  
  327KB
- MD5
  
  98cab0558e42d020ede1d69f1e3b9598
- SHA1
  
  bdbb16d563cf680f1e7a740711f4e17c9e982113
- SHA256
  
  20408f0f4a31def35922663bd5eb706e0e257a4603a88cf5fceb289a7067d2d2
- SHA512
  
  b3559169106e1f27c4a4fc10948961c1db680686cf2ca2488b9096250afc4cd3be7846204f97d66f738f6171565eb9fd3d49d47bc67191b979961fe861411843
- SSDEEP
  
  6144:Jr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FA:Jr4iu6/eIo4Rsw33AtsmQt
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2