6d5952633a4426170c88ee93645e6d7373db79c30d2aa1ef66d82a164194a3aa | Triage

Sharing

General

Target

48f66e4072c8f91b86ae7e22586f5580N.exe
Size

327KB
Sample

240722-cycresxgkq
MD5

48f66e4072c8f91b86ae7e22586f5580
SHA1

399636d10bc2df6179b85c506311d5ddf6ecfd12
SHA256

6d5952633a4426170c88ee93645e6d7373db79c30d2aa1ef66d82a164194a3aa
SHA512

87f59354cbce5bb60c3baf00fff216da257f78b7f5c4a2671197a86fde4bb693427f027a6667ebae6c856b17a2f94d0019b6ebc36699850219dfe3ff6189d910
SSDEEP

6144:8rPbUzkuvcBYC47l2xx+DOd2cHRcsgIEHQi8KePBE:8rEkuveY3LDO8IRcsgISQBKePK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  48f66e4072c8f91b86ae7e22586f5580N.exe
- Size
  
  327KB
- MD5
  
  48f66e4072c8f91b86ae7e22586f5580
- SHA1
  
  399636d10bc2df6179b85c506311d5ddf6ecfd12
- SHA256
  
  6d5952633a4426170c88ee93645e6d7373db79c30d2aa1ef66d82a164194a3aa
- SHA512
  
  87f59354cbce5bb60c3baf00fff216da257f78b7f5c4a2671197a86fde4bb693427f027a6667ebae6c856b17a2f94d0019b6ebc36699850219dfe3ff6189d910
- SSDEEP
  
  6144:8rPbUzkuvcBYC47l2xx+DOd2cHRcsgIEHQi8KePBE:8rEkuveY3LDO8IRcsgISQBKePK
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2