314da8eb61f25a495838d46d0beb94bc783d3a7b831a4737444f9697dddbbe83 | Triage

Sharing

General

Target

314da8eb61f25a495838d46d0beb94bc783d3a7b831a4737444f9697dddbbe83
Size

313KB
Sample

221123-khlndsce3v
MD5

fe2051ca82915e4fce0c57513acaca3e
SHA1

acbda626267033221b38365d67574490af2c3e61
SHA256

314da8eb61f25a495838d46d0beb94bc783d3a7b831a4737444f9697dddbbe83
SHA512

ddbd50101508b1e18f02fcc76f17fbc9fc388411346f504c3a1d0f666901944dff66eaf888446a3e02461aafc3dc760a74d20593f0a37d8241d630a9e6f51749
SSDEEP

6144:Brb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMP:BrRu6/eIo4t3PuFITKUA0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  314da8eb61f25a495838d46d0beb94bc783d3a7b831a4737444f9697dddbbe83
- Size
  
  313KB
- MD5
  
  fe2051ca82915e4fce0c57513acaca3e
- SHA1
  
  acbda626267033221b38365d67574490af2c3e61
- SHA256
  
  314da8eb61f25a495838d46d0beb94bc783d3a7b831a4737444f9697dddbbe83
- SHA512
  
  ddbd50101508b1e18f02fcc76f17fbc9fc388411346f504c3a1d0f666901944dff66eaf888446a3e02461aafc3dc760a74d20593f0a37d8241d630a9e6f51749
- SSDEEP
  
  6144:Brb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMP:BrRu6/eIo4t3PuFITKUA0
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2