291bb5c5f404e3427a11c599d02d59956ad68c2601d8702dfcc75f10e02d5105 | Triage

Sharing

General

Target

291bb5c5f404e3427a11c599d02d59956ad68c2601d8702dfcc75f10e02d5105
Size

313KB
Sample

221123-kj853sce81
MD5

aedfba829d5477aa5efcf9657013dfd1
SHA1

6cb8733386f3cc9333c03d4467d91399b8161ccc
SHA256

291bb5c5f404e3427a11c599d02d59956ad68c2601d8702dfcc75f10e02d5105
SHA512

1feeb7987e0c19a75d90f95d4bb16fab1c4b983bed063123565d7a46bc92d68f4fc000fd76c89c9eff7bfba40fd1196cc75c9c01c69411b56929d596a24723ab
SSDEEP

6144:vrK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0Le:vryu6/eIo4vMResyEf0uP9d9UG0e

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  291bb5c5f404e3427a11c599d02d59956ad68c2601d8702dfcc75f10e02d5105
- Size
  
  313KB
- MD5
  
  aedfba829d5477aa5efcf9657013dfd1
- SHA1
  
  6cb8733386f3cc9333c03d4467d91399b8161ccc
- SHA256
  
  291bb5c5f404e3427a11c599d02d59956ad68c2601d8702dfcc75f10e02d5105
- SHA512
  
  1feeb7987e0c19a75d90f95d4bb16fab1c4b983bed063123565d7a46bc92d68f4fc000fd76c89c9eff7bfba40fd1196cc75c9c01c69411b56929d596a24723ab
- SSDEEP
  
  6144:vrK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0Le:vryu6/eIo4vMResyEf0uP9d9UG0e
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2