5172450a293dc60392305523594d6be66f0d32c02ed7ca19475e2766bddc0edb | Triage

Submit
Reports

Overview

overview

8

Static

static

5172450a29...db.exe

windows7-x64

8

5172450a29...db.exe

windows10-2004-x64

8

Sharing

General

Target

5172450a293dc60392305523594d6be66f0d32c02ed7ca19475e2766bddc0edb
Size

600KB
Sample

221123-mgm6yaea78
MD5

72bed3b06a0ab3ce4298a814def3e8f7
SHA1

e32f03cb18949238847c7829719f92d9410ca2d9
SHA256

5172450a293dc60392305523594d6be66f0d32c02ed7ca19475e2766bddc0edb
SHA512

0d45ca8250edcdb0d3a55959185748f9fb2a98cfb3959acbe7ab60e5a2ba62963eaffa9a46bb110ace4412565fd69f36df532a70889d67cac3993043b522d88e
SSDEEP

12288:jIny5DYT15GJAJuW5VQSscvX9hYKBZ27oQYpFZN:rUTeJOJ5VQOvXgo7N

Score

8^/10

discovery

Static task

static1

Behavioral task

behavioral1

Sample

5172450a293dc60392305523594d6be66f0d32c02ed7ca19475e2766bddc0edb.exe

Resource

win7-20221111-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

5172450a293dc60392305523594d6be66f0d32c02ed7ca19475e2766bddc0edb.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  5172450a293dc60392305523594d6be66f0d32c02ed7ca19475e2766bddc0edb
- Size
  
  600KB
- MD5
  
  72bed3b06a0ab3ce4298a814def3e8f7
- SHA1
  
  e32f03cb18949238847c7829719f92d9410ca2d9
- SHA256
  
  5172450a293dc60392305523594d6be66f0d32c02ed7ca19475e2766bddc0edb
- SHA512
  
  0d45ca8250edcdb0d3a55959185748f9fb2a98cfb3959acbe7ab60e5a2ba62963eaffa9a46bb110ace4412565fd69f36df532a70889d67cac3993043b522d88e
- SSDEEP
  
  12288:jIny5DYT15GJAJuW5VQSscvX9hYKBZ27oQYpFZN:rUTeJOJ5VQOvXgo7N
Score

8^/10

discovery
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy