4fec3a5776b0860d0e6949e26f3cf43e9bfeef4f8342be6cbbab85c355b4aedf | Triage

Sharing

General

Target

4fec3a5776b0860d0e6949e26f3cf43e9bfeef4f8342be6cbbab85c355b4aedf
Size

313KB
Sample

221123-kcl2zacc31
MD5

d4bd717f93b19687ff9d316dd3968d1f
SHA1

f7dcf5a6b474c148eb3921eea2e13a88ba35aae3
SHA256

4fec3a5776b0860d0e6949e26f3cf43e9bfeef4f8342be6cbbab85c355b4aedf
SHA512

5a9cc2506038acf4ae71117814afbd94af207e8c819a34c6b744ee1d7c735a03f6cc8f4267f76bb99c8dd35ca0313302ea0f87f698bfd9fbc9448998c7054ed3
SSDEEP

6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYye:Ark4u6/eIo4nlu7trxFtApfgMyrpjYye

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4fec3a5776b0860d0e6949e26f3cf43e9bfeef4f8342be6cbbab85c355b4aedf
- Size
  
  313KB
- MD5
  
  d4bd717f93b19687ff9d316dd3968d1f
- SHA1
  
  f7dcf5a6b474c148eb3921eea2e13a88ba35aae3
- SHA256
  
  4fec3a5776b0860d0e6949e26f3cf43e9bfeef4f8342be6cbbab85c355b4aedf
- SHA512
  
  5a9cc2506038acf4ae71117814afbd94af207e8c819a34c6b744ee1d7c735a03f6cc8f4267f76bb99c8dd35ca0313302ea0f87f698bfd9fbc9448998c7054ed3
- SSDEEP
  
  6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYye:Ark4u6/eIo4nlu7trxFtApfgMyrpjYye
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2