2e18dcc1432cd14840eb648a5cf8c94d01d4181796b17d29273aa18657c877a2 | Triage

Sharing

General

Target

2e18dcc1432cd14840eb648a5cf8c94d01d4181796b17d29273aa18657c877a2
Size

326KB
Sample

221123-kh6zbshb49
MD5

9dddcacb68ce09f854fbedd73744a7f1
SHA1

98c1bd4b6eafc1fc0fce7e581455c748845846d6
SHA256

2e18dcc1432cd14840eb648a5cf8c94d01d4181796b17d29273aa18657c877a2
SHA512

724c65f121bd679842b7668fb51db6f8e0a568879549c2c15c5373fa86728ae42b8105b31d9b95db20e1d7e5f5c597058fc43fd05a91fb6fa75f276d15ab1f06
SSDEEP

6144:Cr4I9uEo2S1YnQmCX492DkwNP3qpYFuT9U1FZA5MRwxuhhfch6clgAF:Cr4gu6/eIo4nULZKMRwxuPfk6IF

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2e18dcc1432cd14840eb648a5cf8c94d01d4181796b17d29273aa18657c877a2
- Size
  
  326KB
- MD5
  
  9dddcacb68ce09f854fbedd73744a7f1
- SHA1
  
  98c1bd4b6eafc1fc0fce7e581455c748845846d6
- SHA256
  
  2e18dcc1432cd14840eb648a5cf8c94d01d4181796b17d29273aa18657c877a2
- SHA512
  
  724c65f121bd679842b7668fb51db6f8e0a568879549c2c15c5373fa86728ae42b8105b31d9b95db20e1d7e5f5c597058fc43fd05a91fb6fa75f276d15ab1f06
- SSDEEP
  
  6144:Cr4I9uEo2S1YnQmCX492DkwNP3qpYFuT9U1FZA5MRwxuhhfch6clgAF:Cr4gu6/eIo4nULZKMRwxuPfk6IF
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2