45b9b908f538c53ef4e86806eaa94e4526aaffa58c7e15563ad77d86df92245c | Triage

Sharing

General

Target

45b9b908f538c53ef4e86806eaa94e4526aaffa58c7e15563ad77d86df92245c
Size

316KB
Sample

221121-tybmsshc89
MD5

21234762d435f68423cdb2e776eaf480
SHA1

28282b97ac86f448e8450c3e579b84493509286a
SHA256

45b9b908f538c53ef4e86806eaa94e4526aaffa58c7e15563ad77d86df92245c
SHA512

b89c694f9141d89b22f828b71f12d4032e948c187255fc96a8442813f4e6127182823902725355b20bf2ccd96152a9f853d1a4242c1a3869e28d8ae05f5416e3
SSDEEP

6144:Ur4bUzkuvcBYC47l2x9bpAJiqS1JDoU0/JleWvJ6AbJbkvIxBu4Ti3iQU:Ur9kuveY3ImYZ15oU0/HtbJbkgXJGyQU

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  45b9b908f538c53ef4e86806eaa94e4526aaffa58c7e15563ad77d86df92245c
- Size
  
  316KB
- MD5
  
  21234762d435f68423cdb2e776eaf480
- SHA1
  
  28282b97ac86f448e8450c3e579b84493509286a
- SHA256
  
  45b9b908f538c53ef4e86806eaa94e4526aaffa58c7e15563ad77d86df92245c
- SHA512
  
  b89c694f9141d89b22f828b71f12d4032e948c187255fc96a8442813f4e6127182823902725355b20bf2ccd96152a9f853d1a4242c1a3869e28d8ae05f5416e3
- SSDEEP
  
  6144:Ur4bUzkuvcBYC47l2x9bpAJiqS1JDoU0/JleWvJ6AbJbkvIxBu4Ti3iQU:Ur9kuveY3ImYZ15oU0/HtbJbkgXJGyQU
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2