19433b9a2cbc5f3f27da30425d20b6aeb04c8af06d67a6e0adc65c827a6b844d | Triage

Sharing

General

Target

19433b9a2cbc5f3f27da30425d20b6aeb04c8af06d67a6e0adc65c827a6b844d
Size

327KB
Sample

221123-kncmnshc95
MD5

c146be95c956b48e85190426a867626c
SHA1

77471056b38cd3fff7a32d2b52f299bd983519e6
SHA256

19433b9a2cbc5f3f27da30425d20b6aeb04c8af06d67a6e0adc65c827a6b844d
SHA512

2b41ec804fe58c8d76b907bd6fde44bf3267291f7c4151766dba6246663c2c4ecbd49bb81794cb980dd49ab0537c360842795511be684c1ae55c5ec23dd5339f
SSDEEP

6144:xr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fb:xr4iu6/eIo4Rsw33AtsmQu

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  19433b9a2cbc5f3f27da30425d20b6aeb04c8af06d67a6e0adc65c827a6b844d
- Size
  
  327KB
- MD5
  
  c146be95c956b48e85190426a867626c
- SHA1
  
  77471056b38cd3fff7a32d2b52f299bd983519e6
- SHA256
  
  19433b9a2cbc5f3f27da30425d20b6aeb04c8af06d67a6e0adc65c827a6b844d
- SHA512
  
  2b41ec804fe58c8d76b907bd6fde44bf3267291f7c4151766dba6246663c2c4ecbd49bb81794cb980dd49ab0537c360842795511be684c1ae55c5ec23dd5339f
- SSDEEP
  
  6144:xr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fb:xr4iu6/eIo4Rsw33AtsmQu
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2