2796cc112be66e6639bf3a27b59dda42f43fdeda0b5abda00efb7168316ccf12 | Triage

Submit
Reports

Overview

overview

8

Static

static

2796cc112b...12.exe

windows7-x64

8

2796cc112b...12.exe

windows10-2004-x64

8

Sharing

General

Target

2796cc112be66e6639bf3a27b59dda42f43fdeda0b5abda00efb7168316ccf12
Size

602KB
Sample

221123-mkb8vaec48
MD5

18e398a1a5b73700808d3a524280e3dd
SHA1

de412ebc8741cdef8c4e20333c0bfdd1f9bd9997
SHA256

2796cc112be66e6639bf3a27b59dda42f43fdeda0b5abda00efb7168316ccf12
SHA512

647254b0db7e6817f423de82466e42641e25b7e74bdac637b858f4096e1b2661cd2d4efff0aed5f85472ebb0df838b923a09902e8237ae73f32ac8830ccc0600
SSDEEP

12288:CIny5DYTWkPtFflOOFZzKrdszG3OW2ddgye:kUTWkPtxIOFF16OWiCy

Score

8^/10

discovery

Static task

static1

Behavioral task

behavioral1

Sample

2796cc112be66e6639bf3a27b59dda42f43fdeda0b5abda00efb7168316ccf12.exe

Resource

win7-20220901-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

2796cc112be66e6639bf3a27b59dda42f43fdeda0b5abda00efb7168316ccf12.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  2796cc112be66e6639bf3a27b59dda42f43fdeda0b5abda00efb7168316ccf12
- Size
  
  602KB
- MD5
  
  18e398a1a5b73700808d3a524280e3dd
- SHA1
  
  de412ebc8741cdef8c4e20333c0bfdd1f9bd9997
- SHA256
  
  2796cc112be66e6639bf3a27b59dda42f43fdeda0b5abda00efb7168316ccf12
- SHA512
  
  647254b0db7e6817f423de82466e42641e25b7e74bdac637b858f4096e1b2661cd2d4efff0aed5f85472ebb0df838b923a09902e8237ae73f32ac8830ccc0600
- SSDEEP
  
  12288:CIny5DYTWkPtFflOOFZzKrdszG3OW2ddgye:kUTWkPtxIOFF16OWiCy
Score

8^/10

discovery
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy