25d6c760f5556191d8afabd65d78e7afe80572539ef5e6733ca23f8c85e85f78 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25d6c760f5556191d8afabd65d78e7afe80572539ef5e6733ca23f8c85e85f78
Size

1.4MB
Sample

221127-kwcyeadg44
MD5

e99b0f4ac83829976031376597265b17
SHA1

ff1361dc47549b0755465ddfb2167bc58ce4cf3c
SHA256

25d6c760f5556191d8afabd65d78e7afe80572539ef5e6733ca23f8c85e85f78
SHA512

0fdd410142270ff77a5df5724d46e9109c97516bf81765436807aed08ade4182273a6c1a465eda41512f85551f304615ae7ad98ff5a47ca44fdf424b67cdc9c0
SSDEEP

24576:vH35Z0pILwMVyYUgCuWnTg9bvKWZkQdOyDfSki+aRi1lnh4cbQg0QfqfqHjYI6c5:P56pqwMVy5XM9dZdad5Ri1lh30QCal6k

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  25d6c760f5556191d8afabd65d78e7afe80572539ef5e6733ca23f8c85e85f78
- Size
  
  1.4MB
- MD5
  
  e99b0f4ac83829976031376597265b17
- SHA1
  
  ff1361dc47549b0755465ddfb2167bc58ce4cf3c
- SHA256
  
  25d6c760f5556191d8afabd65d78e7afe80572539ef5e6733ca23f8c85e85f78
- SHA512
  
  0fdd410142270ff77a5df5724d46e9109c97516bf81765436807aed08ade4182273a6c1a465eda41512f85551f304615ae7ad98ff5a47ca44fdf424b67cdc9c0
- SSDEEP
  
  24576:vH35Z0pILwMVyYUgCuWnTg9bvKWZkQdOyDfSki+aRi1lnh4cbQg0QfqfqHjYI6c5:P56pqwMVy5XM9dZdad5Ri1lh30QCal6k
Score

8^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2