20432ffb94837659a5e778c0588008e514b31bed9f757b3d354ba506cc351068 | Triage

Sharing

General

Target

4a6f1cf3f6a50684053f294d2615b9a8
Size

313KB
Sample

231226-b78psaeea7
MD5

4a6f1cf3f6a50684053f294d2615b9a8
SHA1

1b9e966f7f3551a1a697af7fc18a5d472eb9dcc7
SHA256

20432ffb94837659a5e778c0588008e514b31bed9f757b3d354ba506cc351068
SHA512

2dacfd45cb14f467c54a7286cfcc8f4795557cc822d684d20c5b758e89bf3f359b698c9b6921045d57e2771fb9e74c86eb26e6f027c1642ba1743cb734ab8c24
SSDEEP

6144:orJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDZ:orfu6/eIo4jVW5soVCcQovoO0DJM+E2

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4a6f1cf3f6a50684053f294d2615b9a8
- Size
  
  313KB
- MD5
  
  4a6f1cf3f6a50684053f294d2615b9a8
- SHA1
  
  1b9e966f7f3551a1a697af7fc18a5d472eb9dcc7
- SHA256
  
  20432ffb94837659a5e778c0588008e514b31bed9f757b3d354ba506cc351068
- SHA512
  
  2dacfd45cb14f467c54a7286cfcc8f4795557cc822d684d20c5b758e89bf3f359b698c9b6921045d57e2771fb9e74c86eb26e6f027c1642ba1743cb734ab8c24
- SSDEEP
  
  6144:orJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDZ:orfu6/eIo4jVW5soVCcQovoO0DJM+E2
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2