4f5b98fd7e3f21c333152170d08d7ffe17f2c9e69862512bd6726c8030c966d1 | Triage

Sharing

General

Target

7ff772000000.chrome.exe
Size

2.2MB
Sample

210722-63yl5f3a6e
MD5

6387220994ea844be6f9a7b0ed8b4d4e
SHA1

d29cf6195bdcdbe6844f6b0ccfa15d6f1f5b62df
SHA256

4f5b98fd7e3f21c333152170d08d7ffe17f2c9e69862512bd6726c8030c966d1
SHA512

bf3fbf9d14d56d8555fc3f6f0f02e197ed1987a17a9b6d1ab33bd7821045507a56a351df6cfd6dc6eb2d309f06ee973ce6811b8ecaafd7188f388b526df79ee7

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  7ff772000000.chrome.exe
- Size
  
  2.2MB
- MD5
  
  6387220994ea844be6f9a7b0ed8b4d4e
- SHA1
  
  d29cf6195bdcdbe6844f6b0ccfa15d6f1f5b62df
- SHA256
  
  4f5b98fd7e3f21c333152170d08d7ffe17f2c9e69862512bd6726c8030c966d1
- SHA512
  
  bf3fbf9d14d56d8555fc3f6f0f02e197ed1987a17a9b6d1ab33bd7821045507a56a351df6cfd6dc6eb2d309f06ee973ce6811b8ecaafd7188f388b526df79ee7
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

Remote System Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2