12448e560486b4215dac4ef91bc941be5ec561b378a8bc77814ef1594bcb0fc4 | Triage

Sharing

General

Target

12448e560486b4215dac4ef91bc941be5ec561b378a8bc77814ef1594bcb0fc4
Size

327KB
Sample

221123-kppnmahd58
MD5

c7422d487e0ffd7f60f5d5ace46ddfd9
SHA1

024a16862f907dcddb2f8e88d3cc370f2343e332
SHA256

12448e560486b4215dac4ef91bc941be5ec561b378a8bc77814ef1594bcb0fc4
SHA512

3b0c622fd10d0bb74d582cce89e92130df21e570ca857e42fb27b77ece6052c62bed0f5639226cdf384569e411f696fe7f129343a618933800fcc0252ed3149d
SSDEEP

6144:Ar469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fu:Ar4iu6/eIo4Rsw33AtsmQf

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  12448e560486b4215dac4ef91bc941be5ec561b378a8bc77814ef1594bcb0fc4
- Size
  
  327KB
- MD5
  
  c7422d487e0ffd7f60f5d5ace46ddfd9
- SHA1
  
  024a16862f907dcddb2f8e88d3cc370f2343e332
- SHA256
  
  12448e560486b4215dac4ef91bc941be5ec561b378a8bc77814ef1594bcb0fc4
- SHA512
  
  3b0c622fd10d0bb74d582cce89e92130df21e570ca857e42fb27b77ece6052c62bed0f5639226cdf384569e411f696fe7f129343a618933800fcc0252ed3149d
- SSDEEP
  
  6144:Ar469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fu:Ar4iu6/eIo4Rsw33AtsmQf
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2