c36bbf0f32469e0119f6d0d70820e31ca1c24bf715251e09bf2a9d71273caa04 | Triage

Sharing

General

Target

c36bbf0f32469e0119f6d0d70820e31ca1c24bf715251e09bf2a9d71273caa04
Size

327KB
Sample

221002-j8qvcsfcc7
MD5

6fec010455d72d64591e143188612f20
SHA1

56a6dc94da6545b5f26139f1af28660e5737e5d5
SHA256

c36bbf0f32469e0119f6d0d70820e31ca1c24bf715251e09bf2a9d71273caa04
SHA512

95f9807f7d06f87c96a23e8f0cdda7b95490bcd87feefb0396f63509d3dfe689223efd60aabc723070ab0f50103c33706d3804032ad5a40e24b36f2959e40ff5
SSDEEP

6144:Fr5bUzkuvcBYC47l2xtOMBOk40RUb01O3cj9/cpY7pSWZvgBpTEaCiX:FrqkuveY3GOMBw0RYMj9kpcpSsvUT4iX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c36bbf0f32469e0119f6d0d70820e31ca1c24bf715251e09bf2a9d71273caa04
- Size
  
  327KB
- MD5
  
  6fec010455d72d64591e143188612f20
- SHA1
  
  56a6dc94da6545b5f26139f1af28660e5737e5d5
- SHA256
  
  c36bbf0f32469e0119f6d0d70820e31ca1c24bf715251e09bf2a9d71273caa04
- SHA512
  
  95f9807f7d06f87c96a23e8f0cdda7b95490bcd87feefb0396f63509d3dfe689223efd60aabc723070ab0f50103c33706d3804032ad5a40e24b36f2959e40ff5
- SSDEEP
  
  6144:Fr5bUzkuvcBYC47l2xtOMBOk40RUb01O3cj9/cpY7pSWZvgBpTEaCiX:FrqkuveY3GOMBw0RYMj9kpcpSsvUT4iX
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2