dc3a1468b0e0abd5f45d4df345e035220b9004e1144e482580a07154c12a0a04 | Triage

Sharing

General

Target

dc3a1468b0e0abd5f45d4df345e035220b9004e1144e482580a07154c12a0a04
Size

316KB
Sample

221004-hwcljagga4
MD5

4f93364b388ff8c2d85ea8dcb9eebbf0
SHA1

6ea8e8674a5dcaee1fd0f5d142654dacadbe166f
SHA256

dc3a1468b0e0abd5f45d4df345e035220b9004e1144e482580a07154c12a0a04
SHA512

9d17556c4208eba79e6efc4560c6daa2620c407748c41e3bf14389eaf014868bdeadcf2c4524c682d5c20d84211863446902bd1ce954e827517863fe45ddffa1
SSDEEP

6144:trJbUzkuvcBYC47l2xuNfL2pAgWriSTb3Z9xuzSCR2bSU:tr6kuveY3TT2XdGp9xRC4bSU

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  dc3a1468b0e0abd5f45d4df345e035220b9004e1144e482580a07154c12a0a04
- Size
  
  316KB
- MD5
  
  4f93364b388ff8c2d85ea8dcb9eebbf0
- SHA1
  
  6ea8e8674a5dcaee1fd0f5d142654dacadbe166f
- SHA256
  
  dc3a1468b0e0abd5f45d4df345e035220b9004e1144e482580a07154c12a0a04
- SHA512
  
  9d17556c4208eba79e6efc4560c6daa2620c407748c41e3bf14389eaf014868bdeadcf2c4524c682d5c20d84211863446902bd1ce954e827517863fe45ddffa1
- SSDEEP
  
  6144:trJbUzkuvcBYC47l2xuNfL2pAgWriSTb3Z9xuzSCR2bSU:tr6kuveY3TT2XdGp9xRC4bSU
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2