aee33594729634a02e85a40325aa1d30ed7290b35287e59e90352791a87eecc0 | Triage

Sharing

General

Target

shortcircuit-1_1_2.exe
Size

705KB
Sample

240726-w4m9wswgkr
MD5

2091b72558109f83c949c2a41d4bc139
SHA1

63033ceeb7ce9ebdf72ddbfc18b53e65a08c89af
SHA256

aee33594729634a02e85a40325aa1d30ed7290b35287e59e90352791a87eecc0
SHA512

8ec51010824373335d23f2a23164183effff101f7d8efbb9f81fc9ba77360a52ec0d0758cae7679fde53c68dd2eedf373b0b29b2d9c568ae40eeb76b342f1e86
SSDEEP

12288:IjkCtm1IcQf4cMCbMS+HrZuqS3Cz++00rNXz2TafuqYAWAq2zRkd5Emi4h/:IIFuf4cHMJHu3F+00qTeeb2zRaCw

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  shortcircuit-1_1_2.exe
- Size
  
  705KB
- MD5
  
  2091b72558109f83c949c2a41d4bc139
- SHA1
  
  63033ceeb7ce9ebdf72ddbfc18b53e65a08c89af
- SHA256
  
  aee33594729634a02e85a40325aa1d30ed7290b35287e59e90352791a87eecc0
- SHA512
  
  8ec51010824373335d23f2a23164183effff101f7d8efbb9f81fc9ba77360a52ec0d0758cae7679fde53c68dd2eedf373b0b29b2d9c568ae40eeb76b342f1e86
- SSDEEP
  
  12288:IjkCtm1IcQf4cMCbMS+HrZuqS3Cz++00rNXz2TafuqYAWAq2zRkd5Emi4h/:IIFuf4cHMJHu3F+00qTeeb2zRaCw
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  $R0
- Size
  
  228KB
- MD5
  
  2612524c9ebeffe1dbeeecaff2393269
- SHA1
  
  00701ee499528abf6be0a1a28da01bc82946e0e0
- SHA256
  
  7848629cb8293117055423c291bc14c3f0139e68293689c7852a9bbcea3f17f1
- SHA512
  
  7963ddf31171bc392cbab82e339810a459c8aed19ca983ce5512c77d67dbc979485f436e2b3eba3b8b483cd003f0c3692bd4e400f9455cad8bf14389a66672a7
- SSDEEP
  
  3072:W1RF1vYoipgZ3RyBKXRXzBB8Tgi9Ag0Fu6OU+mlv2S/S1o5:EFl/b8T19AO6OzS
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $R2/NSIS.Library.RegTool.v2.exe
- Size
  
  4KB
- MD5
  
  908af58665641fb5164a8fac0c52e5be
- SHA1
  
  0a8364f2d2acf25edeb9d499780327d03c933f5f
- SHA256
  
  324ce0d4ae9135f64046d3667ff938410bd71fd72495969e57c358ab3242410c
- SHA512
  
  2d77f9c79512c084fee0df7678c0a0419d80446967551cfe15c08d1aa08ceb2b0022a060dbd8e58b5d1d860deeb0c9630e91c94881f4d09b163ba5e04dfce255
- SSDEEP
  
  48:iEEnhnLwNkQRikmxH2tHAmjW+wuINvRfnxhCKZLcibO8QCLU8QCf2dBYvm4DOgwZ:0lqPwI12umRfnx8KpdV2d6+4DFH/6
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  shortcircuit.chm
- Size
  
  178KB
- MD5
  
  fb46dcf76d362816ce57ca06d2a93639
- SHA1
  
  c3bdc11c9971537edccc3a57efaeead18bed23a3
- SHA256
  
  82076907f41cd43d2055cac93d33b5d552ec3ed8ef49a8b4faecf3298401701e
- SHA512
  
  05f6dcc45f4114b9ab01f6d662f4d57ba67484edfa64a6cea9a370b669cde9df6fb0499bda361a233325f4eb32678bc5961d2613f159208f7d09a3f3f457575d
- SSDEEP
  
  3072:g5zK08E5PxokX8oKGokUCE0wbB+q5PBeEeJ2gRS+46jJ7X1LWjWSGs8SWMvs:gdKrKywWkbE0fMPkEAgWjJ7XcO//
Score

1^/10
behavioral7 behavioral8
- Target
  
  shortcircuit.dll
- Size
  
  995KB
- MD5
  
  4de6a7eba2f72b66e3eb574dfb421f54
- SHA1
  
  7bf5378ded8f55df1c90d8351bbb35ba4876a2df
- SHA256
  
  d7de354f4ed741c3ea06cf5678262c8eeb82043e536a6c8a03f63fdefadcb8eb
- SHA512
  
  3d81da004271701600e4376ba1ffa7250badf7b3e707580b92835ac1cc917a2dc6f9e9a6067bc516d149ba16b2b6482b2ce84a123cde89802c556e677cb7a286
- SSDEEP
  
  24576:aClobimWz27xMSUKPKn28CnYITFfej8Hx:aa4xMr28CYIThM8R
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  uninstall.exe
- Size
  
  62KB
- MD5
  
  da329c02f546a5d7e5a480135af8ff52
- SHA1
  
  23a6774a858a9c5b84d9b0b9cc86a378652fdafe
- SHA256
  
  5bef5c0f21cbd77e5de5341368ac0259df7931f205bff133a558b9ed05b3b635
- SHA512
  
  60e6dfa1cd8ebc1b2595b46b6f44e0da54e98afdc195fa08c2c67b2dec9806c3db18d1872ef0da28b93f31d0d13851bcc64324fa7c8067a52c2283a5fc25bd90
- SSDEEP
  
  768:KZNmw20R2l56pPtxNTmf26hUggZe/BSFoHLLkkJTOQc142FtWwSICP8nn3gYRNBJ:AvnkCPZTSBL98kJKQcREYRNB/1
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12