cb9e6e843b567ffd09da5d212b77c93d9e9c20e9e177e14b7ad8445bbc680457 | Triage

Resubmissions

15/07/2024, 15:14

240715-smcv2szbng 7

15/07/2024, 15:07

240715-shlmdswglp 7

Sharing

General

Target

setup_travellers_rest_0.6.4.12_(72084).exe
Size

330.1MB
Sample

240715-shlmdswglp
MD5

823362dc71636e2d60618d127d06bd00
SHA1

8a458d7a9f0e2e5bc966f4843218846571d70ebf
SHA256

cb9e6e843b567ffd09da5d212b77c93d9e9c20e9e177e14b7ad8445bbc680457
SHA512

a38ca3b8ca31830a738e2e825b5b6491a763f987fae0e8abe17d49e6725ea40505b5792e1dc5360c67f3a24e4e94993cf63f832c11fffbd35a1daa779cef96a8
SSDEEP

6291456:yBqd1mWvyjkvVpLBvHahwbaQo+XuUUqTCjYHt4uaoFWFpUVPqbDIoMvqT:n15vDVNY4aGuUbTCjYHt4ulWvUVibDfj

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  setup_travellers_rest_0.6.4.12_(72084).exe
- Size
  
  330.1MB
- MD5
  
  823362dc71636e2d60618d127d06bd00
- SHA1
  
  8a458d7a9f0e2e5bc966f4843218846571d70ebf
- SHA256
  
  cb9e6e843b567ffd09da5d212b77c93d9e9c20e9e177e14b7ad8445bbc680457
- SHA512
  
  a38ca3b8ca31830a738e2e825b5b6491a763f987fae0e8abe17d49e6725ea40505b5792e1dc5360c67f3a24e4e94993cf63f832c11fffbd35a1daa779cef96a8
- SSDEEP
  
  6291456:yBqd1mWvyjkvVpLBvHahwbaQo+XuUUqTCjYHt4uaoFWFpUVPqbDIoMvqT:n15vDVNY4aGuUbTCjYHt4ulWvUVibDfj
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1