345f3d99052b1c9186fcb96f39c2da5e94b939baea4efc03ae280a83215a7a55 | Triage

Sharing

General

Target

345f3d99052b1c9186fcb96f39c2da5e94b939baea4efc03ae280a83215a7a55
Size

327KB
Sample

221123-kg6l6shb25
MD5

ba3203b077ea272ede57e0ee8ffabae0
SHA1

af795c3658575566ebf97716a744c679c551fdc5
SHA256

345f3d99052b1c9186fcb96f39c2da5e94b939baea4efc03ae280a83215a7a55
SHA512

aa0ec00d4e0f8ca827ee015f925a73112226540d45dc67399c7db9e9503f103c6a9a430eec33ec81b91ef4c0ccba33dc92d75c83275438910f87e3f0493c703a
SSDEEP

6144:Jr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FK:Jr4iu6/eIo4Rsw33AtsmQf

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  345f3d99052b1c9186fcb96f39c2da5e94b939baea4efc03ae280a83215a7a55
- Size
  
  327KB
- MD5
  
  ba3203b077ea272ede57e0ee8ffabae0
- SHA1
  
  af795c3658575566ebf97716a744c679c551fdc5
- SHA256
  
  345f3d99052b1c9186fcb96f39c2da5e94b939baea4efc03ae280a83215a7a55
- SHA512
  
  aa0ec00d4e0f8ca827ee015f925a73112226540d45dc67399c7db9e9503f103c6a9a430eec33ec81b91ef4c0ccba33dc92d75c83275438910f87e3f0493c703a
- SSDEEP
  
  6144:Jr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FK:Jr4iu6/eIo4Rsw33AtsmQf
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2