4e543f443d3f990fb6db161e6ee2b811c2c4dd8e6d365e9d4d22f0b08238ae2b | Triage

Sharing

General

Target

4e543f443d3f990fb6db161e6ee2b811c2c4dd8e6d365e9d4d22f0b08238ae2b
Size

323KB
Sample

221030-hmlg3shccr
MD5

a34a619c5ef27cfa1f5588a6abf5e7f0
SHA1

4f167304d8511f04e895e07e68518e0af0e46d44
SHA256

4e543f443d3f990fb6db161e6ee2b811c2c4dd8e6d365e9d4d22f0b08238ae2b
SHA512

a4404598febde2a274b87ac1856bdaa692c8e10f7b16d79f26273c1cf3f865a4e45e86c2434860f52c90e1a1092025ba2c4a0ea2ad7fde73be8123827ec1e206
SSDEEP

6144:vrw66Y0JQBkQRl7174NpNUM+UHs+QERfq0ZjgTSPjTy7N6XNSqweEO7Vsy7WybU/:vrV63yRl1uqM+gs+QgiMgTwjO7IkE7VG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4e543f443d3f990fb6db161e6ee2b811c2c4dd8e6d365e9d4d22f0b08238ae2b
- Size
  
  323KB
- MD5
  
  a34a619c5ef27cfa1f5588a6abf5e7f0
- SHA1
  
  4f167304d8511f04e895e07e68518e0af0e46d44
- SHA256
  
  4e543f443d3f990fb6db161e6ee2b811c2c4dd8e6d365e9d4d22f0b08238ae2b
- SHA512
  
  a4404598febde2a274b87ac1856bdaa692c8e10f7b16d79f26273c1cf3f865a4e45e86c2434860f52c90e1a1092025ba2c4a0ea2ad7fde73be8123827ec1e206
- SSDEEP
  
  6144:vrw66Y0JQBkQRl7174NpNUM+UHs+QERfq0ZjgTSPjTy7N6XNSqweEO7Vsy7WybU/:vrV63yRl1uqM+gs+QgiMgTwjO7IkE7VG
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2