b197261c8861dee2e8be1cb8e91bcd1bf180f59a6cd112463054f9484fd128ae | Triage

Sharing

General

Target

Setup_ConfigManager_07.72.0128.0.exe
Size

123.8MB
Sample

241122-cwajaayldm
MD5

184c8a93033c72fa5c7e7d2094fecc0e
SHA1

c539c3bcc437060410cdfcab4ca07eb3c513d3ba
SHA256

b197261c8861dee2e8be1cb8e91bcd1bf180f59a6cd112463054f9484fd128ae
SHA512

17149e3576f2e66b785a6d18c51094dfdc555dab0800af77f105debce84324975f6c83089ef9f6b01a2b34a6a4414f2a75e7f17b294983b619b7c9b418679e22
SSDEEP

3145728:hteJ2W8SLhAuFTzaqbyFXWgMdhGfR1YrDZQrXwV5cMmsM:hsJ2W8SFAupzaNmgMdh2RSDZQzwV5K

Score

10^/10

discovery evasion execution

Malware Config

Targets

- Target
  
  Setup_ConfigManager_07.72.0128.0.exe
- Size
  
  123.8MB
- MD5
  
  184c8a93033c72fa5c7e7d2094fecc0e
- SHA1
  
  c539c3bcc437060410cdfcab4ca07eb3c513d3ba
- SHA256
  
  b197261c8861dee2e8be1cb8e91bcd1bf180f59a6cd112463054f9484fd128ae
- SHA512
  
  17149e3576f2e66b785a6d18c51094dfdc555dab0800af77f105debce84324975f6c83089ef9f6b01a2b34a6a4414f2a75e7f17b294983b619b7c9b418679e22
- SSDEEP
  
  3145728:hteJ2W8SLhAuFTzaqbyFXWgMdhGfR1YrDZQrXwV5cMmsM:hsJ2W8SFAupzaNmgMdh2RSDZQzwV5K
Score

10^/10

discovery evasion execution
- Disables service(s)
  evasion execution
- Stops running service(s)
  evasion execution
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Service Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

discoveryevasionexecution