2632e7aca20bfc65e18a71e33907ad511bfb91a7f0e4f2395b00b93900ca3f7c | Triage

Sharing

General

Target

2632e7aca20bfc65e18a71e33907ad511bfb91a7f0e4f2395b00b93900ca3f7c
Size

327KB
Sample

221123-kkvn3scf3t
MD5

a854207d7e4396143111d3081553e9eb
SHA1

2bc206c2c21770fe0728de9c27fe0fb8790018ef
SHA256

2632e7aca20bfc65e18a71e33907ad511bfb91a7f0e4f2395b00b93900ca3f7c
SHA512

7540579d1dd0d6ff600d1fcb9c3725eb95e25b020134b30439acf6683c83942fcaff62a91296f96ca99f143f845e67928022f134838f4e6959f6c4a99d3e9b01
SSDEEP

6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fv:Rr4iu6/eIo4Rsw33AtsmQm

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2632e7aca20bfc65e18a71e33907ad511bfb91a7f0e4f2395b00b93900ca3f7c
- Size
  
  327KB
- MD5
  
  a854207d7e4396143111d3081553e9eb
- SHA1
  
  2bc206c2c21770fe0728de9c27fe0fb8790018ef
- SHA256
  
  2632e7aca20bfc65e18a71e33907ad511bfb91a7f0e4f2395b00b93900ca3f7c
- SHA512
  
  7540579d1dd0d6ff600d1fcb9c3725eb95e25b020134b30439acf6683c83942fcaff62a91296f96ca99f143f845e67928022f134838f4e6959f6c4a99d3e9b01
- SSDEEP
  
  6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fv:Rr4iu6/eIo4Rsw33AtsmQm
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2