4c5e514dde43ea5a04f9fbff84b79f14ce6fba7a40c892830921482d63a2eab9 | Triage

Sharing

General

Target

4c5e514dde43ea5a04f9fbff84b79f14ce6fba7a40c892830921482d63a2eab9
Size

324KB
Sample

221020-s9rygscdb4
MD5

964274916f3476b7e13d8615e0351a50
SHA1

209400b41db2fd28f37545e64d0c4fff94d1fc5e
SHA256

4c5e514dde43ea5a04f9fbff84b79f14ce6fba7a40c892830921482d63a2eab9
SHA512

640b8a6f1fb57ab8768eaf7f5d002e6e1465ae74f4f711699d5ea16ef6204af2aa0edd7ad372ae7be15b5be81e6cc0231eefa69db4ffab1aea3b1473b1ff19c6
SSDEEP

6144:frORTyv4bo0jy7bQbUzkuvcBYC47l2xDVh+QXyPiTfLdV3WviSTFRZLqhJiJC:frVFkuveY3O+EyGDdkp+j3

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4c5e514dde43ea5a04f9fbff84b79f14ce6fba7a40c892830921482d63a2eab9
- Size
  
  324KB
- MD5
  
  964274916f3476b7e13d8615e0351a50
- SHA1
  
  209400b41db2fd28f37545e64d0c4fff94d1fc5e
- SHA256
  
  4c5e514dde43ea5a04f9fbff84b79f14ce6fba7a40c892830921482d63a2eab9
- SHA512
  
  640b8a6f1fb57ab8768eaf7f5d002e6e1465ae74f4f711699d5ea16ef6204af2aa0edd7ad372ae7be15b5be81e6cc0231eefa69db4ffab1aea3b1473b1ff19c6
- SSDEEP
  
  6144:frORTyv4bo0jy7bQbUzkuvcBYC47l2xDVh+QXyPiTfLdV3WviSTFRZLqhJiJC:frVFkuveY3O+EyGDdkp+j3
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2