f52c28a6de64e4b312b58a043655a85df9ffde580f0c3872bd5fbedfa1cce794 | Triage

Sharing

General

Target

f52c28a6de64e4b312b58a043655a85df9ffde580f0c3872bd5fbedfa1cce794
Size

316KB
Sample

221123-hs4kvaed39
MD5

4131575adeb2fc4f8fc2290bde62402f
SHA1

575e96f6eb560aca002c3910e110e5bd6472e718
SHA256

f52c28a6de64e4b312b58a043655a85df9ffde580f0c3872bd5fbedfa1cce794
SHA512

54efe5038ae82a73df22b479514de0d44d6939f41eb99a8c514e0e1e4242377799c74d2489cfc863d6ce6ffb2f97355b297eaffb75afc385cf79237ec4dd75e0
SSDEEP

6144:yrabUzkuvcBYC47l2xgh2hyP9wUnIG2mQP6vxoG0rkKu:yrDkuveY3N2eHnIPmQP6vqvm

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f52c28a6de64e4b312b58a043655a85df9ffde580f0c3872bd5fbedfa1cce794
- Size
  
  316KB
- MD5
  
  4131575adeb2fc4f8fc2290bde62402f
- SHA1
  
  575e96f6eb560aca002c3910e110e5bd6472e718
- SHA256
  
  f52c28a6de64e4b312b58a043655a85df9ffde580f0c3872bd5fbedfa1cce794
- SHA512
  
  54efe5038ae82a73df22b479514de0d44d6939f41eb99a8c514e0e1e4242377799c74d2489cfc863d6ce6ffb2f97355b297eaffb75afc385cf79237ec4dd75e0
- SSDEEP
  
  6144:yrabUzkuvcBYC47l2xgh2hyP9wUnIG2mQP6vxoG0rkKu:yrDkuveY3N2eHnIPmQP6vqvm
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2