ffba3cf544cd69cc737a58622b467b1884622cd00f40838e75f18d6667edaee8 | Triage

Sharing

General

Target

ffba3cf544cd69cc737a58622b467b1884622cd00f40838e75f18d6667edaee8
Size

316KB
Sample

221011-dltd3scae5
MD5

5e4539408b9430603ca17557825d8c80
SHA1

9ee6058cf4bf497e5c1ef7d65b7f3109fb3b5711
SHA256

ffba3cf544cd69cc737a58622b467b1884622cd00f40838e75f18d6667edaee8
SHA512

c248264c5741d3a008c7e93bc800f39c36b32190e82c259c70f2e74b7c7b4072689cd0612764c2ed1e3694c40b31e23877311371cfe05750ebc9179cabf0cdbf
SSDEEP

6144:kr4bUzkuvcBYC47l2x9bpAJiqS1JDoU0/JleWvJ6AbJbkvIxBu4Ti3iQQ:kr9kuveY3ImYZ15oU0/HtbJbkgXJGyQQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ffba3cf544cd69cc737a58622b467b1884622cd00f40838e75f18d6667edaee8
- Size
  
  316KB
- MD5
  
  5e4539408b9430603ca17557825d8c80
- SHA1
  
  9ee6058cf4bf497e5c1ef7d65b7f3109fb3b5711
- SHA256
  
  ffba3cf544cd69cc737a58622b467b1884622cd00f40838e75f18d6667edaee8
- SHA512
  
  c248264c5741d3a008c7e93bc800f39c36b32190e82c259c70f2e74b7c7b4072689cd0612764c2ed1e3694c40b31e23877311371cfe05750ebc9179cabf0cdbf
- SSDEEP
  
  6144:kr4bUzkuvcBYC47l2x9bpAJiqS1JDoU0/JleWvJ6AbJbkvIxBu4Ti3iQQ:kr9kuveY3ImYZ15oU0/HtbJbkgXJGyQQ
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2