354e5f6fd319425d81c0f485912bd37fd596448212b0eb114d825e4c1a9ac706 | Triage

Sharing

General

Target

354e5f6fd319425d81c0f485912bd37fd596448212b0eb114d825e4c1a9ac706
Size

313KB
Sample

221123-kg12paha99
MD5

9cfadb9c4cd2ec9e9300c1e71a0c720c
SHA1

028186187eed615c557a40e733fdaf9308145766
SHA256

354e5f6fd319425d81c0f485912bd37fd596448212b0eb114d825e4c1a9ac706
SHA512

59a4664c63c4fb5e69b5960592892583d95aeaed7bf41b1a1826fdb842c4ac1c1e870b3d0dce9ff3c3502da2004998544d753dc713aa26df60a176d9784f3ad7
SSDEEP

6144:prb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoM6:prRu6/eIo4t3PuFITKUA1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  354e5f6fd319425d81c0f485912bd37fd596448212b0eb114d825e4c1a9ac706
- Size
  
  313KB
- MD5
  
  9cfadb9c4cd2ec9e9300c1e71a0c720c
- SHA1
  
  028186187eed615c557a40e733fdaf9308145766
- SHA256
  
  354e5f6fd319425d81c0f485912bd37fd596448212b0eb114d825e4c1a9ac706
- SHA512
  
  59a4664c63c4fb5e69b5960592892583d95aeaed7bf41b1a1826fdb842c4ac1c1e870b3d0dce9ff3c3502da2004998544d753dc713aa26df60a176d9784f3ad7
- SSDEEP
  
  6144:prb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoM6:prRu6/eIo4t3PuFITKUA1
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2