c63b313a715c6b12eef2fc272737bcbf8b7a70832742834ca72d2109b74f9a39 | Triage

Sharing

General

Target

c63b313a715c6b12eef2fc272737bcbf8b7a70832742834ca72d2109b74f9a39
Size

304KB
Sample

221123-kwhtnada71
MD5

abc0f0c2448abbd599e6c7cba5e4ea36
SHA1

d607b82e05a023db8c6669942ff9e964262d5cc0
SHA256

c63b313a715c6b12eef2fc272737bcbf8b7a70832742834ca72d2109b74f9a39
SHA512

56a3f6dfd11574b78085bc58c690754b4396b2111854b6fa8d0ebadaa2908730d9656fc5ae08f0727c2f5a25c23738e417534b7d93eddafebe1618def03de2b7
SSDEEP

6144:NrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPK:Nrkuu6/eIo4tQW62T+uTwM6YVxm24K

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c63b313a715c6b12eef2fc272737bcbf8b7a70832742834ca72d2109b74f9a39
- Size
  
  304KB
- MD5
  
  abc0f0c2448abbd599e6c7cba5e4ea36
- SHA1
  
  d607b82e05a023db8c6669942ff9e964262d5cc0
- SHA256
  
  c63b313a715c6b12eef2fc272737bcbf8b7a70832742834ca72d2109b74f9a39
- SHA512
  
  56a3f6dfd11574b78085bc58c690754b4396b2111854b6fa8d0ebadaa2908730d9656fc5ae08f0727c2f5a25c23738e417534b7d93eddafebe1618def03de2b7
- SSDEEP
  
  6144:NrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPK:Nrkuu6/eIo4tQW62T+uTwM6YVxm24K
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2