Triage | Malware sandboxing report by Hatching Triage

Sharing

General

Target

FalixNodes-Desktop.exe
Size

67MB
Sample

220923-hfe2qaddd2
MD5

c6a86469d3f1a0fdb567f98e930c4e0f
SHA1

b5a86b9a65707585d96b353db79840f88e118dde
SHA256

8ce180778adea78c9173f6628fde60f237a214eb15878edca157ae5d3df7b801
SHA512

98c14e9608fabd9869967c9e3e162c8486e048490a7424d160e763f3d09d878b86c7645587594d61b3c1714ab588974490fd3d328519da66acec3fd454297127
SSDEEP

1572864:G+MIbSwSwqTb1s97C8SuRWNY71ELTXQlTyNb03ai7bmsjME:GFI2wSwaq97gPAywey3W2b

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  FalixNodes-Desktop.exe
- Size
  
  67MB
- MD5
  
  c6a86469d3f1a0fdb567f98e930c4e0f
- SHA1
  
  b5a86b9a65707585d96b353db79840f88e118dde
- SHA256
  
  8ce180778adea78c9173f6628fde60f237a214eb15878edca157ae5d3df7b801
- SHA512
  
  98c14e9608fabd9869967c9e3e162c8486e048490a7424d160e763f3d09d878b86c7645587594d61b3c1714ab588974490fd3d328519da66acec3fd454297127
- SSDEEP
  
  1572864:G+MIbSwSwqTb1s97C8SuRWNY71ELTXQlTyNb03ai7bmsjME:GFI2wSwaq97gPAywey3W2b
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Process Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2