2166e8af5884c74a12c9e4827b37c978ff4dc8d9b5b83053be47fdfebc2617fa | Triage

Sharing

General

Target

2166e8af5884c74a12c9e4827b37c978ff4dc8d9b5b83053be47fdfebc2617fa
Size

327KB
Sample

221123-klsacacf6y
MD5

c54fd1572048a3a3e925681b28573c6a
SHA1

cacd6fc3e4534a97f0c0f1d429b937e3d653d578
SHA256

2166e8af5884c74a12c9e4827b37c978ff4dc8d9b5b83053be47fdfebc2617fa
SHA512

7683879c974c0d6bbdbc983d220bf938c6ac81373af2d2934cae2e5e2d26607bea723e5b0859893e2cb05ce6bd8363af01575f4479489fafa21ab90c8cf5e4cc
SSDEEP

6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FN:Rr4iu6/eIo4Rsw33AtsmQg

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2166e8af5884c74a12c9e4827b37c978ff4dc8d9b5b83053be47fdfebc2617fa
- Size
  
  327KB
- MD5
  
  c54fd1572048a3a3e925681b28573c6a
- SHA1
  
  cacd6fc3e4534a97f0c0f1d429b937e3d653d578
- SHA256
  
  2166e8af5884c74a12c9e4827b37c978ff4dc8d9b5b83053be47fdfebc2617fa
- SHA512
  
  7683879c974c0d6bbdbc983d220bf938c6ac81373af2d2934cae2e5e2d26607bea723e5b0859893e2cb05ce6bd8363af01575f4479489fafa21ab90c8cf5e4cc
- SSDEEP
  
  6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FN:Rr4iu6/eIo4Rsw33AtsmQg
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2