18fdd87386fa5372bdbeac621c086c636dec5da6a2cfe392ebd2ed350f1cc11b | Triage

Sharing

General

Target

18fdd87386fa5372bdbeac621c086c636dec5da6a2cfe392ebd2ed350f1cc11b
Size

313KB
Sample

221123-kner2acg31
MD5

fc051ce96351c3d1d1578932c3f5a812
SHA1

79f33021498ad35c24f4a42a6fdcb92b5b3a83ec
SHA256

18fdd87386fa5372bdbeac621c086c636dec5da6a2cfe392ebd2ed350f1cc11b
SHA512

38820628c6bbd2bfd1b790364111227034f31552336b7577e83fb76e6837d6528599aec521bb5e42e95bd92df895e0438820e3e3aa8ace154d0ed97ac98596fe
SSDEEP

6144:6rkP9uEo2S1YnQmCX492DkwNP3qpYFpdteedaMtBxOWUevASojincBS+:6rkFu6/eIo4mdt2M/lUevAzicx

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  18fdd87386fa5372bdbeac621c086c636dec5da6a2cfe392ebd2ed350f1cc11b
- Size
  
  313KB
- MD5
  
  fc051ce96351c3d1d1578932c3f5a812
- SHA1
  
  79f33021498ad35c24f4a42a6fdcb92b5b3a83ec
- SHA256
  
  18fdd87386fa5372bdbeac621c086c636dec5da6a2cfe392ebd2ed350f1cc11b
- SHA512
  
  38820628c6bbd2bfd1b790364111227034f31552336b7577e83fb76e6837d6528599aec521bb5e42e95bd92df895e0438820e3e3aa8ace154d0ed97ac98596fe
- SSDEEP
  
  6144:6rkP9uEo2S1YnQmCX492DkwNP3qpYFpdteedaMtBxOWUevASojincBS+:6rkFu6/eIo4mdt2M/lUevAzicx
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2