0451a6303a1cf10e48179353cbc1afa4a6a9ff380ed5d4e0051f62c00a80cbdf | Triage

Sharing

General

Target

0451a6303a1cf10e48179353cbc1afa4a6a9ff380ed5d4e0051f62c00a80cbdf
Size

326KB
Sample

240310-vtcjzahb9w
MD5

23694d66a0ba4aa2493f2cca1f1fdacc
SHA1

b4d1f2de152f77cadc82bbbe76e528775d40c427
SHA256

0451a6303a1cf10e48179353cbc1afa4a6a9ff380ed5d4e0051f62c00a80cbdf
SHA512

3d93665d1a653cecb4890f632914a74c17f5a48ce750660198acac478607e1f1b1e93ba0dfe6f26ae3fcaf8641a5d289a044939176bf7fb71b20ad6a30edad52
SSDEEP

6144:ur469uEo2S1YnQmCX492DkwNP3qpYFhVq5fRr7kW2hjCmPLSysJma5:ur4iu6/eIo44O0W2UY2yy5

Score

9^/10

discovery

Malware Config

Targets

- Target
  
  0451a6303a1cf10e48179353cbc1afa4a6a9ff380ed5d4e0051f62c00a80cbdf
- Size
  
  326KB
- MD5
  
  23694d66a0ba4aa2493f2cca1f1fdacc
- SHA1
  
  b4d1f2de152f77cadc82bbbe76e528775d40c427
- SHA256
  
  0451a6303a1cf10e48179353cbc1afa4a6a9ff380ed5d4e0051f62c00a80cbdf
- SHA512
  
  3d93665d1a653cecb4890f632914a74c17f5a48ce750660198acac478607e1f1b1e93ba0dfe6f26ae3fcaf8641a5d289a044939176bf7fb71b20ad6a30edad52
- SSDEEP
  
  6144:ur469uEo2S1YnQmCX492DkwNP3qpYFhVq5fRr7kW2hjCmPLSysJma5:ur4iu6/eIo44O0W2UY2yy5
Score

9^/10

discovery
- Detects executables referencing many IR and analysis tools
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2