36fe7a72f9790240cef1759f7875a6b4b4cba27960f69306f3338151b1941b3b | Triage

Sharing

General

Target

36fe7a72f9790240cef1759f7875a6b4b4cba27960f69306f3338151b1941b3b
Size

327KB
Sample

221123-kgla8scd8w
MD5

c2ac61c5757636d0f760524667695891
SHA1

17b7184cd176ed3d23cd2fa6ec8fa093e17652f6
SHA256

36fe7a72f9790240cef1759f7875a6b4b4cba27960f69306f3338151b1941b3b
SHA512

5081ace3abeec37cd34c4f774356475bf712e4a3ceb46acaf21fd7d91bc689af9797366242521172c46b7d01fe44559183291f9aa7da71bd0f1ca5d2ea39445b
SSDEEP

6144:Ar469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F4:Ar4iu6/eIo4Rsw33AtsmQJ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  36fe7a72f9790240cef1759f7875a6b4b4cba27960f69306f3338151b1941b3b
- Size
  
  327KB
- MD5
  
  c2ac61c5757636d0f760524667695891
- SHA1
  
  17b7184cd176ed3d23cd2fa6ec8fa093e17652f6
- SHA256
  
  36fe7a72f9790240cef1759f7875a6b4b4cba27960f69306f3338151b1941b3b
- SHA512
  
  5081ace3abeec37cd34c4f774356475bf712e4a3ceb46acaf21fd7d91bc689af9797366242521172c46b7d01fe44559183291f9aa7da71bd0f1ca5d2ea39445b
- SSDEEP
  
  6144:Ar469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F4:Ar4iu6/eIo4Rsw33AtsmQJ
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2