ca67d2de3d9f51997d7366270e4626e255b39c1e4cbd3d88f6592d82b5b39106 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ca67d2de3d9f51997d7366270e4626e255b39c1e4cbd3d88f6592d82b5b39106
Size

228KB
Sample

221003-zdcl9aeeg5
MD5

635b8a58892c69854751df4b73ee0b60
SHA1

462a3c626ff114359484fbb6026531509d46bd04
SHA256

ca67d2de3d9f51997d7366270e4626e255b39c1e4cbd3d88f6592d82b5b39106
SHA512

4f50d0b6fe971599174557fb90eb55d3b4f1428754ab640978eaed8dfd0cccd30b84cd1b969849e068fa726a44ba66daeb49d53a7ff83587c1144898eac14a2c
SSDEEP

3072:TELuPYKVYs/0sDwhmQeMPx2kiz7ZO0e4gso6KKWWnZVLbJKvQfJWYdOsyMMztr:TELOYi4hmX6x2rzdO0yso/KDZVLktr

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  ca67d2de3d9f51997d7366270e4626e255b39c1e4cbd3d88f6592d82b5b39106
- Size
  
  228KB
- MD5
  
  635b8a58892c69854751df4b73ee0b60
- SHA1
  
  462a3c626ff114359484fbb6026531509d46bd04
- SHA256
  
  ca67d2de3d9f51997d7366270e4626e255b39c1e4cbd3d88f6592d82b5b39106
- SHA512
  
  4f50d0b6fe971599174557fb90eb55d3b4f1428754ab640978eaed8dfd0cccd30b84cd1b969849e068fa726a44ba66daeb49d53a7ff83587c1144898eac14a2c
- SSDEEP
  
  3072:TELuPYKVYs/0sDwhmQeMPx2kiz7ZO0e4gso6KKWWnZVLbJKvQfJWYdOsyMMztr:TELOYi4hmX6x2rzdO0yso/KDZVLktr
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2