436376a1606df04bebc8d39f8b4da1b8df4befe1895c18b03dbd1e9200a35c49 | Triage

Sharing

General

Target

436376a1606df04bebc8d39f8b4da1b8df4befe1895c18b03dbd1e9200a35c49
Size

313KB
Sample

221123-kepwmscd2v
MD5

db32ad14942b9a9349a3a15d05a87eff
SHA1

ec1d297daa276e275f5041d77f89cab18df08f87
SHA256

436376a1606df04bebc8d39f8b4da1b8df4befe1895c18b03dbd1e9200a35c49
SHA512

208c320bf5aca139647d7ae7bc9e84cd4eb48b7e38a23aa570f32e8d31bf7e3b57da025b8dcd06aef281cf946d03ed2a65f3d91c705f73e85dab469c3f5c8c84
SSDEEP

6144:oro9uEo2S1YnQmCX492DkwNP3qpYFx1PKR9bwMHCrwqdS1D/9n1v94d8:orAu6/eIo4s1yR9lsc/ad8

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  436376a1606df04bebc8d39f8b4da1b8df4befe1895c18b03dbd1e9200a35c49
- Size
  
  313KB
- MD5
  
  db32ad14942b9a9349a3a15d05a87eff
- SHA1
  
  ec1d297daa276e275f5041d77f89cab18df08f87
- SHA256
  
  436376a1606df04bebc8d39f8b4da1b8df4befe1895c18b03dbd1e9200a35c49
- SHA512
  
  208c320bf5aca139647d7ae7bc9e84cd4eb48b7e38a23aa570f32e8d31bf7e3b57da025b8dcd06aef281cf946d03ed2a65f3d91c705f73e85dab469c3f5c8c84
- SSDEEP
  
  6144:oro9uEo2S1YnQmCX492DkwNP3qpYFx1PKR9bwMHCrwqdS1D/9n1v94d8:orAu6/eIo4s1yR9lsc/ad8
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2