45b63a33460661729cac6ad49b59a8a09ce9dbdf49431983e0024f54de58e143 | Triage

Sharing

General

Target

45b63a33460661729cac6ad49b59a8a09ce9dbdf49431983e0024f54de58e143
Size

304KB
Sample

221123-kzgqrsdb9t
MD5

f120fb04bd07e3ccfa6157782a781a43
SHA1

d6b66526dcb85dea1ae951eb738c9d1519fed856
SHA256

45b63a33460661729cac6ad49b59a8a09ce9dbdf49431983e0024f54de58e143
SHA512

8101b47beec4ea0a96c8650abcc6d3cf00b1f4081a77f95597e539f5e9ef08b4dea3308a4c477559f77b73b7d46f8829e66ff2eefab6ee8c139e43801a24e071
SSDEEP

6144:drkx9uEo2S1YnQmCX492DkwNP3qpYFkXdlP5IO5/OoCVHuy6SHZ86riVZkiizZ:drkHu6/eIo4RXdrIO5/OpVHd6Ky6rizE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  45b63a33460661729cac6ad49b59a8a09ce9dbdf49431983e0024f54de58e143
- Size
  
  304KB
- MD5
  
  f120fb04bd07e3ccfa6157782a781a43
- SHA1
  
  d6b66526dcb85dea1ae951eb738c9d1519fed856
- SHA256
  
  45b63a33460661729cac6ad49b59a8a09ce9dbdf49431983e0024f54de58e143
- SHA512
  
  8101b47beec4ea0a96c8650abcc6d3cf00b1f4081a77f95597e539f5e9ef08b4dea3308a4c477559f77b73b7d46f8829e66ff2eefab6ee8c139e43801a24e071
- SSDEEP
  
  6144:drkx9uEo2S1YnQmCX492DkwNP3qpYFkXdlP5IO5/OoCVHuy6SHZ86riVZkiizZ:drkHu6/eIo4RXdrIO5/OpVHd6Ky6rizE
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2