1d48ee81cb61e89da0e53898c6bea9e408f4140c346d4116e34817d0f0b0a7a9 | Triage

Sharing

General

Target

1d48ee81cb61e89da0e53898c6bea9e408f4140c346d4116e34817d0f0b0a7a9
Size

316KB
Sample

221123-kmj1cshc63
MD5

b288b7924c95494d818b1dbd8319fbe2
SHA1

f3194eb597d79ccb882888b9774d72630cdef346
SHA256

1d48ee81cb61e89da0e53898c6bea9e408f4140c346d4116e34817d0f0b0a7a9
SHA512

5d803e612871f2297d004570976f3e236313919ab84b99dd6374ff8235ab77d87eeae0c33bf75a9a65332ab157879e43a559e88d8c24cb35a55ce787e7927a22
SSDEEP

6144:Rr9bUzkuvcBYC47l2xA0CLzrfn5Agvirxi/NRFBDAre:Rr+kuveY3hdLzrfn5A1KtBd

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1d48ee81cb61e89da0e53898c6bea9e408f4140c346d4116e34817d0f0b0a7a9
- Size
  
  316KB
- MD5
  
  b288b7924c95494d818b1dbd8319fbe2
- SHA1
  
  f3194eb597d79ccb882888b9774d72630cdef346
- SHA256
  
  1d48ee81cb61e89da0e53898c6bea9e408f4140c346d4116e34817d0f0b0a7a9
- SHA512
  
  5d803e612871f2297d004570976f3e236313919ab84b99dd6374ff8235ab77d87eeae0c33bf75a9a65332ab157879e43a559e88d8c24cb35a55ce787e7927a22
- SSDEEP
  
  6144:Rr9bUzkuvcBYC47l2xA0CLzrfn5Agvirxi/NRFBDAre:Rr+kuveY3hdLzrfn5A1KtBd
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2