561933ad96269891ec98e18db02322c6c697e121c193370a65509a8f34e7bc24 | Triage

Sharing

General

Target

tmp
Size

3.0MB
Sample

230411-svbyqaeh71
MD5

6065621288b2b1731fcd771d0ba5f537
SHA1

01625a415d6a8c0a20413bf389a8dce5390f9545
SHA256

561933ad96269891ec98e18db02322c6c697e121c193370a65509a8f34e7bc24
SHA512

cfdebfcec671e074690bcf74d4d9c138dfa7ba509dd20e3f3b6ca7f356e2e09aab5f329bf5851c63a4556efee3048117b8d4441a964159e3af777eca46ee29d7
SSDEEP

49152:q3a9626oGnkcmLbjfM4DlusnQ7N09OJ1/3uBka4v62hdbgZocilkfknJ1g17+SLf:f426oGmLbTM4tuNZv6SFbgZocilgknJQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  tmp
- Size
  
  3.0MB
- MD5
  
  6065621288b2b1731fcd771d0ba5f537
- SHA1
  
  01625a415d6a8c0a20413bf389a8dce5390f9545
- SHA256
  
  561933ad96269891ec98e18db02322c6c697e121c193370a65509a8f34e7bc24
- SHA512
  
  cfdebfcec671e074690bcf74d4d9c138dfa7ba509dd20e3f3b6ca7f356e2e09aab5f329bf5851c63a4556efee3048117b8d4441a964159e3af777eca46ee29d7
- SSDEEP
  
  49152:q3a9626oGnkcmLbjfM4DlusnQ7N09OJ1/3uBka4v62hdbgZocilkfknJ1g17+SLf:f426oGmLbTM4tuNZv6SFbgZocilgknJQ
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2