cad38f5e0935805d93a3c6f7eb44a65e92d5c9e58a000a7ec5ecb1bca86f3f20 | Triage

Sharing

General

Target

cad38f5e0935805d93a3c6f7eb44a65e92d5c9e58a000a7ec5ecb1bca86f3f20
Size

315KB
Sample

221020-gc7rwsgbbn
MD5

81384349101dbcd5d45c7a3f80a2b360
SHA1

3638c1194f43472a75485cb875ba6364af02302d
SHA256

cad38f5e0935805d93a3c6f7eb44a65e92d5c9e58a000a7ec5ecb1bca86f3f20
SHA512

a626070439a5f7a3a9f733ab7bf08770651f55aa91c09b0be1a9cdecd97b9048af771a26669f51a104899445d0142f0d716ae27350908150b8d7d0448a975ee5
SSDEEP

6144:srYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZ+:srdkuveY3CvI5Zdkj6OEu1HS+

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  cad38f5e0935805d93a3c6f7eb44a65e92d5c9e58a000a7ec5ecb1bca86f3f20
- Size
  
  315KB
- MD5
  
  81384349101dbcd5d45c7a3f80a2b360
- SHA1
  
  3638c1194f43472a75485cb875ba6364af02302d
- SHA256
  
  cad38f5e0935805d93a3c6f7eb44a65e92d5c9e58a000a7ec5ecb1bca86f3f20
- SHA512
  
  a626070439a5f7a3a9f733ab7bf08770651f55aa91c09b0be1a9cdecd97b9048af771a26669f51a104899445d0142f0d716ae27350908150b8d7d0448a975ee5
- SSDEEP
  
  6144:srYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZ+:srdkuveY3CvI5Zdkj6OEu1HS+
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2