18ae4557fcfdf95c6f2137a681d29cbe11a4a261ee1681e77b36b76e7cd2b70c | Triage

Sharing

General

Target

18ae4557fcfdf95c6f2137a681d29cbe11a4a261ee1681e77b36b76e7cd2b70c
Size

316KB
Sample

221020-gnyclagfg7
MD5

421b8c7a4a41be4ff9149fea8aca6770
SHA1

ae66a491c7fa6a0ac5ff5e684081ea2bb0074981
SHA256

18ae4557fcfdf95c6f2137a681d29cbe11a4a261ee1681e77b36b76e7cd2b70c
SHA512

8f59948e444d6a76da45410bbd573d28255eda5c3a82d805f8da39426ad36b2c7f1b39c9ce34e0b341d74b6edd39a9d87ac8e16310047f2f4589e86c87c83b96
SSDEEP

6144:CrabUzkuvcBYC47l2xgh2hyP9wUnIG2mQP6vxoG0rkKo:CrDkuveY3N2eHnIPmQP6vqvQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  18ae4557fcfdf95c6f2137a681d29cbe11a4a261ee1681e77b36b76e7cd2b70c
- Size
  
  316KB
- MD5
  
  421b8c7a4a41be4ff9149fea8aca6770
- SHA1
  
  ae66a491c7fa6a0ac5ff5e684081ea2bb0074981
- SHA256
  
  18ae4557fcfdf95c6f2137a681d29cbe11a4a261ee1681e77b36b76e7cd2b70c
- SHA512
  
  8f59948e444d6a76da45410bbd573d28255eda5c3a82d805f8da39426ad36b2c7f1b39c9ce34e0b341d74b6edd39a9d87ac8e16310047f2f4589e86c87c83b96
- SSDEEP
  
  6144:CrabUzkuvcBYC47l2xgh2hyP9wUnIG2mQP6vxoG0rkKo:CrDkuveY3N2eHnIPmQP6vqvQ
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2