Overview

overview

7

Static

static

3686f12036...12.exe

windows7-x64

7

3686f12036...12.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3686f12036d9cd2503580451674da775e027b430e429eacb9f1a5360036ab012

  • Size

    314KB

  • Sample

    221123-kgrg9aha88

  • MD5

    ddd45c9ed778aa8bbfcbc347f3c1ca7f

  • SHA1

    bc6fc761f8df225192f4bfe2db2d28ecc0e00833

  • SHA256

    3686f12036d9cd2503580451674da775e027b430e429eacb9f1a5360036ab012

  • SHA512

    fc4e38ca0840bff23874c191440f9151a7757281d7ea3f6b4e0d7a4059ce96055d568b6e994fdaeb848007b446f358671614d98046f972a780e130f85c9a874d

  • SSDEEP

    6144:Cr5bUzkuvcBYC47l2xGnV6OjJaV490B6lKPk3JDEbk0teSVti:CrqkuveY3RnV6c800oIpbv0SVti

Score
7/10
discovery

Malware Config

Targets

    • Target

      3686f12036d9cd2503580451674da775e027b430e429eacb9f1a5360036ab012

    • Size

      314KB

    • MD5

      ddd45c9ed778aa8bbfcbc347f3c1ca7f

    • SHA1

      bc6fc761f8df225192f4bfe2db2d28ecc0e00833

    • SHA256

      3686f12036d9cd2503580451674da775e027b430e429eacb9f1a5360036ab012

    • SHA512

      fc4e38ca0840bff23874c191440f9151a7757281d7ea3f6b4e0d7a4059ce96055d568b6e994fdaeb848007b446f358671614d98046f972a780e130f85c9a874d

    • SSDEEP

      6144:Cr5bUzkuvcBYC47l2xGnV6OjJaV490B6lKPk3JDEbk0teSVti:CrqkuveY3RnV6c800oIpbv0SVti

    Score
    7/10
    discovery

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks