dfbbbe4e6484525846d84104fd93849b0c44397615d18145129545f9c3a74e68 | Triage

Sharing

General

Target

dfbbbe4e6484525846d84104fd93849b0c44397615d18145129545f9c3a74e68
Size

327KB
Sample

221002-j5vddagdfn
MD5

4047a4955f4aca2cb376b563495a9d80
SHA1

614b6ff7f22d0e3b00c25cfb0539f120dc27373e
SHA256

dfbbbe4e6484525846d84104fd93849b0c44397615d18145129545f9c3a74e68
SHA512

1f4ec9da985154df903cf3ccf876d8528b964149db452096807afb4fe1bc203aae087a4910a9e2bc2f268f7abb600a1c243d055cf943dd709847d93332b58791
SSDEEP

6144:Er5bUzkuvcBYC47l2xtOMBOk40RUb01O3cj9/cpY7pSWZvgBpTEaCiA:ErqkuveY3GOMBw0RYMj9kpcpSsvUT4iA

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  dfbbbe4e6484525846d84104fd93849b0c44397615d18145129545f9c3a74e68
- Size
  
  327KB
- MD5
  
  4047a4955f4aca2cb376b563495a9d80
- SHA1
  
  614b6ff7f22d0e3b00c25cfb0539f120dc27373e
- SHA256
  
  dfbbbe4e6484525846d84104fd93849b0c44397615d18145129545f9c3a74e68
- SHA512
  
  1f4ec9da985154df903cf3ccf876d8528b964149db452096807afb4fe1bc203aae087a4910a9e2bc2f268f7abb600a1c243d055cf943dd709847d93332b58791
- SSDEEP
  
  6144:Er5bUzkuvcBYC47l2xtOMBOk40RUb01O3cj9/cpY7pSWZvgBpTEaCiA:ErqkuveY3GOMBw0RYMj9kpcpSsvUT4iA
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2