b465bdfc4e56a3f899a8e93d6a1c2069533201e19401f6a9bac197f1d04001ec | Triage

Sharing

General

Target

b465bdfc4e56a3f899a8e93d6a1c2069533201e19401f6a9bac197f1d04001ec
Size

325KB
Sample

221127-k6lnasac6s
MD5

57746c1fb9161c449c59a718dffd5fa8
SHA1

27b12c76fce8e116c68f8bdf4f9962fcc02f17af
SHA256

b465bdfc4e56a3f899a8e93d6a1c2069533201e19401f6a9bac197f1d04001ec
SHA512

79e13e67aa4a3d23d50a260c99c0f770b0a6607e07b6c1a3897d4c452f225b1871678ba786e9b78f97cbcede07f1783054963331f0eadfc2d6a2387d710904d8
SSDEEP

6144:8r1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5oa:8r1B3u6/eIo4ArVUBQCCYOqmO5oa

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b465bdfc4e56a3f899a8e93d6a1c2069533201e19401f6a9bac197f1d04001ec
- Size
  
  325KB
- MD5
  
  57746c1fb9161c449c59a718dffd5fa8
- SHA1
  
  27b12c76fce8e116c68f8bdf4f9962fcc02f17af
- SHA256
  
  b465bdfc4e56a3f899a8e93d6a1c2069533201e19401f6a9bac197f1d04001ec
- SHA512
  
  79e13e67aa4a3d23d50a260c99c0f770b0a6607e07b6c1a3897d4c452f225b1871678ba786e9b78f97cbcede07f1783054963331f0eadfc2d6a2387d710904d8
- SSDEEP
  
  6144:8r1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5oa:8r1B3u6/eIo4ArVUBQCCYOqmO5oa
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2