4d51cf86537704f01ce7a97953b7b43daa272c60c5adc29b836705b52b0949de | Triage

Sharing

General

Target

4d51cf86537704f01ce7a97953b7b43daa272c60c5adc29b836705b52b0949de
Size

316KB
Sample

221123-kc2gnagh43
MD5

a9ebe3471d47d94e4fab2c5f9e7d753b
SHA1

20d58d8866193a4c6135c720e69837164da63d85
SHA256

4d51cf86537704f01ce7a97953b7b43daa272c60c5adc29b836705b52b0949de
SHA512

231ef4528bc57c184aae8c10d71373d509e210a765ecbcc43b54ca1b3d465da13b491f3c06d92b98e9841986a8145b9c9651e59a9a97b691ca81fe2639553fc6
SSDEEP

6144:9rJbUzkuvcBYC47l2xuNfL2pAgWriSTb3Z9xuzSCR2bSt:9r6kuveY3TT2XdGp9xRC4bSt

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4d51cf86537704f01ce7a97953b7b43daa272c60c5adc29b836705b52b0949de
- Size
  
  316KB
- MD5
  
  a9ebe3471d47d94e4fab2c5f9e7d753b
- SHA1
  
  20d58d8866193a4c6135c720e69837164da63d85
- SHA256
  
  4d51cf86537704f01ce7a97953b7b43daa272c60c5adc29b836705b52b0949de
- SHA512
  
  231ef4528bc57c184aae8c10d71373d509e210a765ecbcc43b54ca1b3d465da13b491f3c06d92b98e9841986a8145b9c9651e59a9a97b691ca81fe2639553fc6
- SSDEEP
  
  6144:9rJbUzkuvcBYC47l2xuNfL2pAgWriSTb3Z9xuzSCR2bSt:9r6kuveY3TT2XdGp9xRC4bSt
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2