5116ba8321cd59f6f22273a51ddedc9e84180535213de4af0bbbf4db45086371 | Triage

Sharing

General

Target

5116ba8321cd59f6f22273a51ddedc9e84180535213de4af0bbbf4db45086371
Size

313KB
Sample

221123-kcgggsgh27
MD5

d0a22b6effcd9153ea7d7977846336d1
SHA1

b9ac7314bc969f0284f3a3e5499a08a92d4a6e2c
SHA256

5116ba8321cd59f6f22273a51ddedc9e84180535213de4af0bbbf4db45086371
SHA512

5276307c22e006c10ea8c2f4c0a207fc993f3dd063cddcaac7d91539d80885931f479a069bc0a5ac9afc89ab110160d351aaeb5d8ec6f832eb29f89475bd6651
SSDEEP

6144:5rb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMT:5rRu6/eIo4t3PuFITKUAw

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  5116ba8321cd59f6f22273a51ddedc9e84180535213de4af0bbbf4db45086371
- Size
  
  313KB
- MD5
  
  d0a22b6effcd9153ea7d7977846336d1
- SHA1
  
  b9ac7314bc969f0284f3a3e5499a08a92d4a6e2c
- SHA256
  
  5116ba8321cd59f6f22273a51ddedc9e84180535213de4af0bbbf4db45086371
- SHA512
  
  5276307c22e006c10ea8c2f4c0a207fc993f3dd063cddcaac7d91539d80885931f479a069bc0a5ac9afc89ab110160d351aaeb5d8ec6f832eb29f89475bd6651
- SSDEEP
  
  6144:5rb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMT:5rRu6/eIo4t3PuFITKUAw
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2