dec45b0554a7e569daf4d7c57ce760c284abae7791e0425a127d57d907390190 | Triage

Sharing

General

Target

dec45b0554a7e569daf4d7c57ce760c284abae7791e0425a127d57d907390190
Size

313KB
Sample

221127-kyrvcahf8z
MD5

4d6167fbf5c8d67c8e8789ebca51272b
SHA1

86fe92763ddbadd6c96d79ec2952c5b83bc4f555
SHA256

dec45b0554a7e569daf4d7c57ce760c284abae7791e0425a127d57d907390190
SHA512

804ac1adfd5b78eddff57d3de79f0e20df31b6b136aba0267389183b76505c65f60faadf2c025da70f1fd06c399cf9c57c495c55eade970695a00f808a4ee716
SSDEEP

6144:crJ9uEo2S1YnQmCX492DkwNP3qpYFkwlWKM23DpJQ+JXUOy1Lr3Dv1A+CiyGdUzb:crfu6/eIo4XwlWKM231t5UnRr3DdRp5+

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  dec45b0554a7e569daf4d7c57ce760c284abae7791e0425a127d57d907390190
- Size
  
  313KB
- MD5
  
  4d6167fbf5c8d67c8e8789ebca51272b
- SHA1
  
  86fe92763ddbadd6c96d79ec2952c5b83bc4f555
- SHA256
  
  dec45b0554a7e569daf4d7c57ce760c284abae7791e0425a127d57d907390190
- SHA512
  
  804ac1adfd5b78eddff57d3de79f0e20df31b6b136aba0267389183b76505c65f60faadf2c025da70f1fd06c399cf9c57c495c55eade970695a00f808a4ee716
- SSDEEP
  
  6144:crJ9uEo2S1YnQmCX492DkwNP3qpYFkwlWKM23DpJQ+JXUOy1Lr3Dv1A+CiyGdUzb:crfu6/eIo4XwlWKM231t5UnRr3DdRp5+
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2