2dd7846cec5bca0f598089639f24e0e91025d99e3e15a894d64f77e83e0caf2f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2dd7846cec5bca0f598089639f24e0e91025d99e3e15a894d64f77e83e0caf2f
Size

330KB
Sample

221020-gmw35sgeep
MD5

80930358faa79bbce91ed081ba4bac80
SHA1

8b3cd5b6eb2cbd036147e2f6f1897e88b789a686
SHA256

2dd7846cec5bca0f598089639f24e0e91025d99e3e15a894d64f77e83e0caf2f
SHA512

af4858cfbfae4a163ad5b3b24a8ac88876e6b7f7950670714b542c73fc4acce20b8a6c11163048d2f17c5be469cd029ae7f5f66ea646fc7d3ba1a2e84b8e6579
SSDEEP

6144:prN3bUzkuvcBYC47l2xSuKsCCqYxzQrEdsQgzyNtTOitx:prNckuveY3tuIYxsEJLTOIx

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2dd7846cec5bca0f598089639f24e0e91025d99e3e15a894d64f77e83e0caf2f
- Size
  
  330KB
- MD5
  
  80930358faa79bbce91ed081ba4bac80
- SHA1
  
  8b3cd5b6eb2cbd036147e2f6f1897e88b789a686
- SHA256
  
  2dd7846cec5bca0f598089639f24e0e91025d99e3e15a894d64f77e83e0caf2f
- SHA512
  
  af4858cfbfae4a163ad5b3b24a8ac88876e6b7f7950670714b542c73fc4acce20b8a6c11163048d2f17c5be469cd029ae7f5f66ea646fc7d3ba1a2e84b8e6579
- SSDEEP
  
  6144:prN3bUzkuvcBYC47l2xSuKsCCqYxzQrEdsQgzyNtTOitx:prNckuveY3tuIYxsEJLTOIx
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2