1d654b945de5f6d7ce27865a5cb2d463101ab836781e287df340509f0d91b72c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1d654b945de5f6d7ce27865a5cb2d463101ab836781e287df340509f0d91b72c
Size

2.3MB
Sample

221126-3dk56scf67
MD5

f345d16452d3ca1a87856c2c76d0752c
SHA1

14ada5f6b5d59c39f4fcc18329335be466b8004e
SHA256

1d654b945de5f6d7ce27865a5cb2d463101ab836781e287df340509f0d91b72c
SHA512

dc03616e5e42e212a4a55865801a2ec0c47fdbc28b71ba3d738270177642522d7cc286a70d11038229c5e3d05c3de9ce7eeb4fc4f48ba1d059868c77685113f0
SSDEEP

49152:/2zg1QublAwBmwpRH8trnK/xxtPiRdD1s1XHcVeIpoU:/2Ql9myRcyWiFI

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  DisH+11Tr-LNG.exe
- Size
  
  2.4MB
- MD5
  
  2abdf9c14eb073126176c9ea86b9d027
- SHA1
  
  7bd169b8063b4d7aae7509f0964fbb6fcb4d34f2
- SHA256
  
  0ee73fd7fd69c76648d7db1f8b7bb6d29592e2476b9753bc1efc90e3a4a30e5a
- SHA512
  
  2267b8c51c84653a296b9fcfa9a7fa2459d07ca462b88af344cdce28c9e748b8312bd72dc83b0ed87f60e821c9af8ca28d9c8f3f78068ffbddbf14fa231e02e5
- SSDEEP
  
  49152:umCbhooxrWd7Oivjhz42b/9J3R5EX00tTKdL6poDGG:bC6ea7vvl42ZJ33m0w2962Dj
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2
- Target
  
  JZ5Uɫվ.url
- Size
  
  111B
- MD5
  
  3e8d917d0d10210cd051d7c251bcb9d9
- SHA1
  
  92bd693746a70ebf302b1f30afbebe1e3d6f4a37
- SHA256
  
  026cee18a5e42425585a1a324fe0894be7cb2fcb1869310ad2a38b73f96e89ef
- SHA512
  
  f676fdeb3cb04db79075adb3e5957dc1722d71a6f7edd03f7cb28b3cce60183e52e952f30c74184799350f0963da5ed8b9b69dfee85eaed49dc724c38985176b
Score

1^/10
behavioral3 behavioral4
- Target
  
  ʹñض.url
- Size
  
  112B
- MD5
  
  b72fb6817f28cc91c35322b3c9864a12
- SHA1
  
  f075eca15246bc681083f3580b6224d43c02506b
- SHA256
  
  e6a86be0cd8f1c493fdb1b9e841255fd36fd12cde26dd2054003603469f08a76
- SHA512
  
  672e0794f73c6210558bad9a985c893704d82d4a203a394ed896c132c8d52ae9a32256c8456d29863e35e35b339b57d55835487c6cf37837e6cd3f5b4cf63b8c
Score

1^/10
behavioral5 behavioral6

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6