12454e5e535d9d4bc354bae369c41b4f2170dc91aa41d45093328b0d6c7d4291 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4e29954c83a72bec1fbe8fa645e0eb69
Size

291KB
Sample

231226-dehn1abgan
MD5

4e29954c83a72bec1fbe8fa645e0eb69
SHA1

ada0017bd01f404b14bb768bfadfa16e3f5c001b
SHA256

12454e5e535d9d4bc354bae369c41b4f2170dc91aa41d45093328b0d6c7d4291
SHA512

7a55a5da08bd8f0d295a49430679c9760faafd2cbc0f2354a218cee3176d1d35ef60e04bc8bc5788d9d8de5441c546b4627b0d54a89623e766e64f375a96c3e2
SSDEEP

3072:GlVoCHQCd7ieTjq8WOEPhZ564zEQAyw97LI/yjBtX/OblBYpGPmvsARIO:6XwIGZ13AF7LPBtvYlBYpGPmneO

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  4e29954c83a72bec1fbe8fa645e0eb69
- Size
  
  291KB
- MD5
  
  4e29954c83a72bec1fbe8fa645e0eb69
- SHA1
  
  ada0017bd01f404b14bb768bfadfa16e3f5c001b
- SHA256
  
  12454e5e535d9d4bc354bae369c41b4f2170dc91aa41d45093328b0d6c7d4291
- SHA512
  
  7a55a5da08bd8f0d295a49430679c9760faafd2cbc0f2354a218cee3176d1d35ef60e04bc8bc5788d9d8de5441c546b4627b0d54a89623e766e64f375a96c3e2
- SSDEEP
  
  3072:GlVoCHQCd7ieTjq8WOEPhZ564zEQAyw97LI/yjBtX/OblBYpGPmvsARIO:6XwIGZ13AF7LPBtvYlBYpGPmneO
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2