435604a823be342b852d4d6adb265bad8eaa83acd6fce29d67249e9c04ae4e8b | Triage

Sharing

General

Target

435604a823be342b852d4d6adb265bad8eaa83acd6fce29d67249e9c04ae4e8b
Size

327KB
Sample

221123-keqg6sha23
MD5

d119021dac2f2383485b2439fd133287
SHA1

612a131c9520efe7d91b56768ccaa96cceedb433
SHA256

435604a823be342b852d4d6adb265bad8eaa83acd6fce29d67249e9c04ae4e8b
SHA512

74e75af2671db148b6e81cbddea03493d5a5476348b10eca6fb57bf4002e9756beb3dc438c27463f68034c74571c13eb601e1aee4ff5a1e5b06df46dab884755
SSDEEP

6144:hr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FqA:hr4iu6/eIo4Rsw33AtsmQi

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  435604a823be342b852d4d6adb265bad8eaa83acd6fce29d67249e9c04ae4e8b
- Size
  
  327KB
- MD5
  
  d119021dac2f2383485b2439fd133287
- SHA1
  
  612a131c9520efe7d91b56768ccaa96cceedb433
- SHA256
  
  435604a823be342b852d4d6adb265bad8eaa83acd6fce29d67249e9c04ae4e8b
- SHA512
  
  74e75af2671db148b6e81cbddea03493d5a5476348b10eca6fb57bf4002e9756beb3dc438c27463f68034c74571c13eb601e1aee4ff5a1e5b06df46dab884755
- SSDEEP
  
  6144:hr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FqA:hr4iu6/eIo4Rsw33AtsmQi
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2