457adb525232ed1539d7383e8a298ef3193a47df93daa7198c3672d240030882 | Triage

Sharing

General

Target

457adb525232ed1539d7383e8a298ef3193a47df93daa7198c3672d240030882
Size

313KB
Sample

221123-keeqnsgh89
MD5

c87314065a9d8f8319d9940e1543da24
SHA1

6e2cb99c0ec173ebb7138fcdf788eaa24cdceb40
SHA256

457adb525232ed1539d7383e8a298ef3193a47df93daa7198c3672d240030882
SHA512

d66416826a374420ba06f2bcfaed6352466363aa363ec557c58556e5eb606f2ed9ffb7a7d9e954eafc2d2c02a5613c334f22397c7b45e4f66db6553e868692d1
SSDEEP

6144:CrkP9uEo2S1YnQmCX492DkwNP3qpYFpdteedaMtBxOWUevASojincBSp:CrkFu6/eIo4mdt2M/lUevAzicG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  457adb525232ed1539d7383e8a298ef3193a47df93daa7198c3672d240030882
- Size
  
  313KB
- MD5
  
  c87314065a9d8f8319d9940e1543da24
- SHA1
  
  6e2cb99c0ec173ebb7138fcdf788eaa24cdceb40
- SHA256
  
  457adb525232ed1539d7383e8a298ef3193a47df93daa7198c3672d240030882
- SHA512
  
  d66416826a374420ba06f2bcfaed6352466363aa363ec557c58556e5eb606f2ed9ffb7a7d9e954eafc2d2c02a5613c334f22397c7b45e4f66db6553e868692d1
- SSDEEP
  
  6144:CrkP9uEo2S1YnQmCX492DkwNP3qpYFpdteedaMtBxOWUevASojincBSp:CrkFu6/eIo4mdt2M/lUevAzicG
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2