4e63c9ea81fbdd6a692a05f3c49f66b6b74bdb3be71a32e430fea3e668e92b91 | Triage

Sharing

General

Target

4e63c9ea81fbdd6a692a05f3c49f66b6b74bdb3be71a32e430fea3e668e92b91
Size

316KB
Sample

221020-gk9apageg8
MD5

80a26f0093104930fc32b1d5d2334890
SHA1

3040fc53a5f1051632729993f9a3e1f59ff42ef5
SHA256

4e63c9ea81fbdd6a692a05f3c49f66b6b74bdb3be71a32e430fea3e668e92b91
SHA512

26037a13b10756eb11c6e0fbcedef49175423371b46624700738bd3b36a43ebe683e9d6a41c41d65efbe05e8c6bc80db4aa9df5dda1300b732213ff4b744ddfb
SSDEEP

6144:trJbUzkuvcBYC47l2xuNfL2pAgWriSTb3Z9xuzSCR2bSE:tr6kuveY3TT2XdGp9xRC4bSE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4e63c9ea81fbdd6a692a05f3c49f66b6b74bdb3be71a32e430fea3e668e92b91
- Size
  
  316KB
- MD5
  
  80a26f0093104930fc32b1d5d2334890
- SHA1
  
  3040fc53a5f1051632729993f9a3e1f59ff42ef5
- SHA256
  
  4e63c9ea81fbdd6a692a05f3c49f66b6b74bdb3be71a32e430fea3e668e92b91
- SHA512
  
  26037a13b10756eb11c6e0fbcedef49175423371b46624700738bd3b36a43ebe683e9d6a41c41d65efbe05e8c6bc80db4aa9df5dda1300b732213ff4b744ddfb
- SSDEEP
  
  6144:trJbUzkuvcBYC47l2xuNfL2pAgWriSTb3Z9xuzSCR2bSE:tr6kuveY3TT2XdGp9xRC4bSE
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2