22888910f4dfe7296005c4dda1f788b3b55ac7b1b93b74a7eb940f53b93131f5 | Triage

Sharing

General

Target

22888910f4dfe7296005c4dda1f788b3b55ac7b1b93b74a7eb940f53b93131f5
Size

316KB
Sample

221123-kllgsshc35
MD5

e710d6c98906e4ab6e9bf3a79ff922a1
SHA1

7726282cce21671c2ac15726154bf9fcbbf39879
SHA256

22888910f4dfe7296005c4dda1f788b3b55ac7b1b93b74a7eb940f53b93131f5
SHA512

aaded196c39c3310244793bb682667f0967f09613b181e9aaf4c18465ee5bde641e7de831f3ceb08f2c2aac15c6e01fb273780c9ab585c2dc5b2ceb3ad261680
SSDEEP

6144:Wr+bUzkuvcBYC47l2xUa0nvmas+8gGxvzbLxS8YXsypuewKmim:WrXkuveY3z+U83tbLpmsgh/m

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  22888910f4dfe7296005c4dda1f788b3b55ac7b1b93b74a7eb940f53b93131f5
- Size
  
  316KB
- MD5
  
  e710d6c98906e4ab6e9bf3a79ff922a1
- SHA1
  
  7726282cce21671c2ac15726154bf9fcbbf39879
- SHA256
  
  22888910f4dfe7296005c4dda1f788b3b55ac7b1b93b74a7eb940f53b93131f5
- SHA512
  
  aaded196c39c3310244793bb682667f0967f09613b181e9aaf4c18465ee5bde641e7de831f3ceb08f2c2aac15c6e01fb273780c9ab585c2dc5b2ceb3ad261680
- SSDEEP
  
  6144:Wr+bUzkuvcBYC47l2xUa0nvmas+8gGxvzbLxS8YXsypuewKmim:WrXkuveY3z+U83tbLpmsgh/m
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2