36c26d4616c28df3aede087e3e1d082c3c4b395364d38701da937cadcdf0e5d5 | Triage

Sharing

General

Target

36c26d4616c28df3aede087e3e1d082c3c4b395364d38701da937cadcdf0e5d5
Size

316KB
Sample

221123-kgpnnaha86
MD5

d15dad50f3d9d514eed2ce42d79bc403
SHA1

0d7e0808b1c1030133fe94bcc1e2df73aaa6ef53
SHA256

36c26d4616c28df3aede087e3e1d082c3c4b395364d38701da937cadcdf0e5d5
SHA512

295aba00a3ffd009e4efa4d7cf911c11bd836ca4784dd30e6c2aad17aef4eb73a2b82c7ea7272f65690026e04733e7a348b1a3e9f38bc3e9b0aff461c8e7cda0
SSDEEP

6144:drybUzkuvcBYC47l2xphuK2+Otbaysqo+/VKitoTxwbs5iD3B2phoH:drLkuveY3EMK9ObxD/06s5w3BLH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  36c26d4616c28df3aede087e3e1d082c3c4b395364d38701da937cadcdf0e5d5
- Size
  
  316KB
- MD5
  
  d15dad50f3d9d514eed2ce42d79bc403
- SHA1
  
  0d7e0808b1c1030133fe94bcc1e2df73aaa6ef53
- SHA256
  
  36c26d4616c28df3aede087e3e1d082c3c4b395364d38701da937cadcdf0e5d5
- SHA512
  
  295aba00a3ffd009e4efa4d7cf911c11bd836ca4784dd30e6c2aad17aef4eb73a2b82c7ea7272f65690026e04733e7a348b1a3e9f38bc3e9b0aff461c8e7cda0
- SSDEEP
  
  6144:drybUzkuvcBYC47l2xphuK2+Otbaysqo+/VKitoTxwbs5iD3B2phoH:drLkuveY3EMK9ObxD/06s5w3BLH
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2