ed33d6fa5b26c491adf68899e5a1e0c1641da070bcbc68441e0d92e21ddbb47f | Triage

Sharing

General

Target

ed33d6fa5b26c491adf68899e5a1e0c1641da070bcbc68441e0d92e21ddbb47f
Size

304KB
Sample

221123-ktgtkshe96
MD5

09b353f119ddf720561f24468bcb837b
SHA1

ac137f81bb6e0f5e916913937337b40188fa7855
SHA256

ed33d6fa5b26c491adf68899e5a1e0c1641da070bcbc68441e0d92e21ddbb47f
SHA512

fc0d197831528b0cc787bdfff12d52f918547010139182aaca3bd9a7e24524f50bf2c3cd45a629598eadee724659043f747c6ceebcaac1346ed6beb1a08d00b6
SSDEEP

6144:9rkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPB:9rkuu6/eIo4tQW62T+uTwM6YVxm24B

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ed33d6fa5b26c491adf68899e5a1e0c1641da070bcbc68441e0d92e21ddbb47f
- Size
  
  304KB
- MD5
  
  09b353f119ddf720561f24468bcb837b
- SHA1
  
  ac137f81bb6e0f5e916913937337b40188fa7855
- SHA256
  
  ed33d6fa5b26c491adf68899e5a1e0c1641da070bcbc68441e0d92e21ddbb47f
- SHA512
  
  fc0d197831528b0cc787bdfff12d52f918547010139182aaca3bd9a7e24524f50bf2c3cd45a629598eadee724659043f747c6ceebcaac1346ed6beb1a08d00b6
- SSDEEP
  
  6144:9rkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPB:9rkuu6/eIo4tQW62T+uTwM6YVxm24B
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2