df06a01338fa044276b1652c9e6b89e8a46f06f3aa333f58cfe872b37b79c8f1 | Triage

Resubmissions

13/12/2023, 18:32

231213-w63scshfd5 1

13/12/2023, 18:29

231213-w42ghshfb3 3

13/12/2023, 18:27

231213-w31tlagbaq 1

13/12/2023, 18:14

231213-wvtejsgacn 8

14/09/2023, 22:44

230914-2n4vlaac37 8

14/09/2023, 22:44

230914-2nsgkafe5v 8

14/09/2023, 22:41

230914-2l748sfe4t 8

Sharing

General

Target

KLSetup.exe
Size

8.2MB
Sample

230914-2nsgkafe5v
MD5

34e088a7c3138807a59a858bf547db9b
SHA1

7b101369670281081914c1e333df1a827beee3be
SHA256

df06a01338fa044276b1652c9e6b89e8a46f06f3aa333f58cfe872b37b79c8f1
SHA512

abe31fd9831c7422ef6bccc411d4cb27693ebcb2d630fad45e861b0706e4f837bcccfde46e9bf4bb455ff17921b48759e7cda8f9605e1a43f59029868c429e64
SSDEEP

98304:5Eo5z/yF0ULxVuZ6xf7GeUVyO6HVyW2iI30Ge2JW9GU5M0xZz:5t5zqF0K7lzV/luWUU66N

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  KLSetup.exe
- Size
  
  8.2MB
- MD5
  
  34e088a7c3138807a59a858bf547db9b
- SHA1
  
  7b101369670281081914c1e333df1a827beee3be
- SHA256
  
  df06a01338fa044276b1652c9e6b89e8a46f06f3aa333f58cfe872b37b79c8f1
- SHA512
  
  abe31fd9831c7422ef6bccc411d4cb27693ebcb2d630fad45e861b0706e4f837bcccfde46e9bf4bb455ff17921b48759e7cda8f9605e1a43f59029868c429e64
- SSDEEP
  
  98304:5Eo5z/yF0ULxVuZ6xf7GeUVyO6HVyW2iI30Ge2JW9GU5M0xZz:5t5zqF0K7lzV/luWUU66N
Score

8^/10

discovery
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1