1c8f2fd050a14f08f50e9d6a608e752dbb611407145034df0e2ff0128743323a | Triage

Sharing

General

Target

1c8f2fd050a14f08f50e9d6a608e752dbb611407145034df0e2ff0128743323a
Size

327KB
Sample

221123-kmqsxahc66
MD5

b7998ff5ae78905eca865894dde515b7
SHA1

c3ec50e1760f58c784d5470dd6c09c7b81da2242
SHA256

1c8f2fd050a14f08f50e9d6a608e752dbb611407145034df0e2ff0128743323a
SHA512

a88216c19fb9c27d96f732aaf702105bcb8d3a3e84483080799110566bb8aedaedcea07e1ba24727ad5a1b0c5cd9ed1e97827d251bf2efacf1869bcc8b32e0f9
SSDEEP

6144:xr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FBE:xr4iu6/eIo4Rsw33AtsmQQE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1c8f2fd050a14f08f50e9d6a608e752dbb611407145034df0e2ff0128743323a
- Size
  
  327KB
- MD5
  
  b7998ff5ae78905eca865894dde515b7
- SHA1
  
  c3ec50e1760f58c784d5470dd6c09c7b81da2242
- SHA256
  
  1c8f2fd050a14f08f50e9d6a608e752dbb611407145034df0e2ff0128743323a
- SHA512
  
  a88216c19fb9c27d96f732aaf702105bcb8d3a3e84483080799110566bb8aedaedcea07e1ba24727ad5a1b0c5cd9ed1e97827d251bf2efacf1869bcc8b32e0f9
- SSDEEP
  
  6144:xr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FBE:xr4iu6/eIo4Rsw33AtsmQQE
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2