fa4fc400af99422b836080c9303214b689288799dc4042f95694aee81f4d3495 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PO KDPI2022-354.exe
Size

371KB
Sample

221020-xrhdjsafep
MD5

865f9eb2e2e3da64c01275adc62ab607
SHA1

34faa309d0fac6f4d22e0537ee5fd1ea314d5ff6
SHA256

fa4fc400af99422b836080c9303214b689288799dc4042f95694aee81f4d3495
SHA512

7d96ea6fa0beb6fd8a95728893594b5522e223ebe681503a119d0f642bd0fac6216baf45233a4eedda02e4385590e6ce088cd8141f4b02cfe71d98811b55b678
SSDEEP

6144:I1kalo3kqJDvAXF2WOl+Ki9pFdmGFV4LNAPwB:I1oD4V2Ll+KDGFVRS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  PO KDPI2022-354.exe
- Size
  
  371KB
- MD5
  
  865f9eb2e2e3da64c01275adc62ab607
- SHA1
  
  34faa309d0fac6f4d22e0537ee5fd1ea314d5ff6
- SHA256
  
  fa4fc400af99422b836080c9303214b689288799dc4042f95694aee81f4d3495
- SHA512
  
  7d96ea6fa0beb6fd8a95728893594b5522e223ebe681503a119d0f642bd0fac6216baf45233a4eedda02e4385590e6ce088cd8141f4b02cfe71d98811b55b678
- SSDEEP
  
  6144:I1kalo3kqJDvAXF2WOl+Ki9pFdmGFV4LNAPwB:I1oD4V2Ll+KDGFVRS
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2