3683bd2ef5577d6958fa630c1383bce082f66578ff122c6d5785e2d941cec7bf | Triage

Sharing

General

Target

3683bd2ef5577d6958fa630c1383bce082f66578ff122c6d5785e2d941cec7bf
Size

316KB
Sample

221123-kgs13sha92
MD5

c1ab8823024ccf63e8377c197f2c8915
SHA1

5d8aafb26a5bf1532a893a90eac71a574d9d7ad0
SHA256

3683bd2ef5577d6958fa630c1383bce082f66578ff122c6d5785e2d941cec7bf
SHA512

0e912fa5795a8eed92b9488d85379e4d2b23a122628137445d995f40bf6bf886a66bed9e7b6f085ed86149a0e9e5e1614dd436be91f864c97ce8e63257d00993
SSDEEP

6144:hrvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVq:hrkkuveY3zhlV6tmDxzwVq

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3683bd2ef5577d6958fa630c1383bce082f66578ff122c6d5785e2d941cec7bf
- Size
  
  316KB
- MD5
  
  c1ab8823024ccf63e8377c197f2c8915
- SHA1
  
  5d8aafb26a5bf1532a893a90eac71a574d9d7ad0
- SHA256
  
  3683bd2ef5577d6958fa630c1383bce082f66578ff122c6d5785e2d941cec7bf
- SHA512
  
  0e912fa5795a8eed92b9488d85379e4d2b23a122628137445d995f40bf6bf886a66bed9e7b6f085ed86149a0e9e5e1614dd436be91f864c97ce8e63257d00993
- SSDEEP
  
  6144:hrvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVq:hrkkuveY3zhlV6tmDxzwVq
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2