19e08cac295ee259a8a0aa35edcfa26b5dd14a5cb56365a2d7d712a3659dbd92 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19e08cac295ee259a8a0aa35edcfa26b5dd14a5cb56365a2d7d712a3659dbd92
Size

618KB
Sample

221127-ksyeyahc7z
MD5

acfdeb5cb0ddeff4ce7738156ee65a25
SHA1

d5c540d77cc2fb0f2ecbbda1c1e227b632c5ef72
SHA256

19e08cac295ee259a8a0aa35edcfa26b5dd14a5cb56365a2d7d712a3659dbd92
SHA512

d118460581351bf4113971344513406a6b7799e3463b254f991f2bc3325c711636e4fba9d85d46532d9711f588aee70e88740ea5b3633af6761267ab2f746fda
SSDEEP

12288:frrjkogdCi7WNwx9l8oEGkuveY39Bn3Y4z9GiC0bZ6SBDr:4ogvWNwmDuXnnI4zUiC09b

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  19e08cac295ee259a8a0aa35edcfa26b5dd14a5cb56365a2d7d712a3659dbd92
- Size
  
  618KB
- MD5
  
  acfdeb5cb0ddeff4ce7738156ee65a25
- SHA1
  
  d5c540d77cc2fb0f2ecbbda1c1e227b632c5ef72
- SHA256
  
  19e08cac295ee259a8a0aa35edcfa26b5dd14a5cb56365a2d7d712a3659dbd92
- SHA512
  
  d118460581351bf4113971344513406a6b7799e3463b254f991f2bc3325c711636e4fba9d85d46532d9711f588aee70e88740ea5b3633af6761267ab2f746fda
- SSDEEP
  
  12288:frrjkogdCi7WNwx9l8oEGkuveY39Bn3Y4z9GiC0bZ6SBDr:4ogvWNwmDuXnnI4zUiC09b
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2