433ffaed491bc579ba9213d49420ce1f81ac1043f4cf96c3c2c650f4323364d9 | Triage

Sharing

General

Target

433ffaed491bc579ba9213d49420ce1f81ac1043f4cf96c3c2c650f4323364d9
Size

324KB
Sample

221123-keq4psha24
MD5

b78db191704d4e23549d467d2508221f
SHA1

f10b39adaba35c29870cccac76120872f333da7b
SHA256

433ffaed491bc579ba9213d49420ce1f81ac1043f4cf96c3c2c650f4323364d9
SHA512

26723815acfeb3f8875aabbed0cb216ce50c895d07923d35f89d9b11a31878525da30280569c33038636993d158b3b86858ab0016433cd10cc36e04ee04f1861
SSDEEP

6144:nrORTyv4bo0jy7b3bUzkuvcBYC47l2xj0Fz0xu8ziBuIUYVMTLgg/8UzQJ5kq+QL:nrVckuveY3zy2BuIUcKgg/LED1dp7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  433ffaed491bc579ba9213d49420ce1f81ac1043f4cf96c3c2c650f4323364d9
- Size
  
  324KB
- MD5
  
  b78db191704d4e23549d467d2508221f
- SHA1
  
  f10b39adaba35c29870cccac76120872f333da7b
- SHA256
  
  433ffaed491bc579ba9213d49420ce1f81ac1043f4cf96c3c2c650f4323364d9
- SHA512
  
  26723815acfeb3f8875aabbed0cb216ce50c895d07923d35f89d9b11a31878525da30280569c33038636993d158b3b86858ab0016433cd10cc36e04ee04f1861
- SSDEEP
  
  6144:nrORTyv4bo0jy7b3bUzkuvcBYC47l2xj0Fz0xu8ziBuIUYVMTLgg/8UzQJ5kq+QL:nrVckuveY3zy2BuIUcKgg/LED1dp7
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2