456a6ba153bb9940b1fd53d3ce82c9d7cd593378777c371c649eebf434f05a8f | Triage

Sharing

General

Target

456a6ba153bb9940b1fd53d3ce82c9d7cd593378777c371c649eebf434f05a8f
Size

314KB
Sample

221123-kefb7sgh92
MD5

9954ca4123cb144c930eefc012d8fc79
SHA1

3ea25d21c20a729096985f2241ac4471104d1735
SHA256

456a6ba153bb9940b1fd53d3ce82c9d7cd593378777c371c649eebf434f05a8f
SHA512

f04688ccefee717c98504a52591102c59d122dc093ac9ed5f6f8a8beceedb6a78f30b1f76041ec672e2e5f45a5bd8f3c0ff557fa1638714da697f7d01c7b4868
SSDEEP

6144:VrYbUzkuvcBYC47l2xa6g4FhwjZd/9d1XKxlo/ecwrHs5K:VrdkuveY36kjZP/XKxlSZAHX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  456a6ba153bb9940b1fd53d3ce82c9d7cd593378777c371c649eebf434f05a8f
- Size
  
  314KB
- MD5
  
  9954ca4123cb144c930eefc012d8fc79
- SHA1
  
  3ea25d21c20a729096985f2241ac4471104d1735
- SHA256
  
  456a6ba153bb9940b1fd53d3ce82c9d7cd593378777c371c649eebf434f05a8f
- SHA512
  
  f04688ccefee717c98504a52591102c59d122dc093ac9ed5f6f8a8beceedb6a78f30b1f76041ec672e2e5f45a5bd8f3c0ff557fa1638714da697f7d01c7b4868
- SSDEEP
  
  6144:VrYbUzkuvcBYC47l2xa6g4FhwjZd/9d1XKxlo/ecwrHs5K:VrdkuveY36kjZP/XKxlSZAHX
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2