19c6502ceb7299d8f60f9c5d28759f3f340a373c077128dba591506d9e9d6f8a | Triage

Sharing

General

Target

19c6502ceb7299d8f60f9c5d28759f3f340a373c077128dba591506d9e9d6f8a
Size

327KB
Sample

221123-km8nqahc93
MD5

f8e7e786081e77595fd667fa8feac02c
SHA1

31893a7c5bfe6c22364c443e9ffe9f756bdd5169
SHA256

19c6502ceb7299d8f60f9c5d28759f3f340a373c077128dba591506d9e9d6f8a
SHA512

20d5b05969f9efb3cd325d178ebd4d04bfc10623899746e2c43351f9ada426827474fc930f73bcd0dbba5b02949a083bb9900888e9e69efa1b7c287eb7e0f03f
SSDEEP

6144:xr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F9:xr4iu6/eIo4Rsw33AtsmQk

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  19c6502ceb7299d8f60f9c5d28759f3f340a373c077128dba591506d9e9d6f8a
- Size
  
  327KB
- MD5
  
  f8e7e786081e77595fd667fa8feac02c
- SHA1
  
  31893a7c5bfe6c22364c443e9ffe9f756bdd5169
- SHA256
  
  19c6502ceb7299d8f60f9c5d28759f3f340a373c077128dba591506d9e9d6f8a
- SHA512
  
  20d5b05969f9efb3cd325d178ebd4d04bfc10623899746e2c43351f9ada426827474fc930f73bcd0dbba5b02949a083bb9900888e9e69efa1b7c287eb7e0f03f
- SSDEEP
  
  6144:xr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F9:xr4iu6/eIo4Rsw33AtsmQk
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2