4e18b670d313b6e71d08157f63eddcb7351732d072bc98e92845c98d0d662b20 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4e18b670d313b6e71d08157f63eddcb7351732d072bc98e92845c98d0d662b20
Size

383KB
Sample

221011-qdhc3afbd9
MD5

4df1f9d46c0b5bf54411a36d2bc79834
SHA1

4d1b1a32d16c8029cf0b91243f6be660a6d1a622
SHA256

4e18b670d313b6e71d08157f63eddcb7351732d072bc98e92845c98d0d662b20
SHA512

c8c794cab4d3a7fd422c33e77aea26370d2851975724be2455939d1ae243b73c5a0aa1485cf99e74c13f9a2b150ba0784a0507671e4fcf850a49f0a291b1df00
SSDEEP

6144:qqPn2GF00Tv9gLilw/g51WzKfwnjTt1rwLG93+2ssArjuCKVNLK0L:qqBF0sS/GYjTt1ryG9upsAvBK7LK0L

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  4e18b670d313b6e71d08157f63eddcb7351732d072bc98e92845c98d0d662b20
- Size
  
  383KB
- MD5
  
  4df1f9d46c0b5bf54411a36d2bc79834
- SHA1
  
  4d1b1a32d16c8029cf0b91243f6be660a6d1a622
- SHA256
  
  4e18b670d313b6e71d08157f63eddcb7351732d072bc98e92845c98d0d662b20
- SHA512
  
  c8c794cab4d3a7fd422c33e77aea26370d2851975724be2455939d1ae243b73c5a0aa1485cf99e74c13f9a2b150ba0784a0507671e4fcf850a49f0a291b1df00
- SSDEEP
  
  6144:qqPn2GF00Tv9gLilw/g51WzKfwnjTt1rwLG93+2ssArjuCKVNLK0L:qqBF0sS/GYjTt1ryG9upsAvBK7LK0L
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2