c76c40075cd7eddd8123c47423c6a8f605be9ee4bf62c0d8c1a2e94d25a07087 | Triage

Sharing

General

Target

c76c40075cd7eddd8123c47423c6a8f605be9ee4bf62c0d8c1a2e94d25a07087
Size

316KB
Sample

221021-dr5z3ahhe7
MD5

4478fb608ed367c0a603ab3622b4a420
SHA1

2062d8d4c3c98be93598279612ee8d73af0f2d24
SHA256

c76c40075cd7eddd8123c47423c6a8f605be9ee4bf62c0d8c1a2e94d25a07087
SHA512

8e056ca8d50ac71bac62d5c6ec629114c3e4acd07097ff2e09cd941ac3de476578b3ecf2449438f88052315148b65b2e96599b6e74a833442d1c1279ba21baca
SSDEEP

6144:9rmbUzkuvcBYC47l2xkihNbvnXz3ma0QKctzwl2hvsbHGJT:9rvkuveY3ibXz3UQKctk2hsbi

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c76c40075cd7eddd8123c47423c6a8f605be9ee4bf62c0d8c1a2e94d25a07087
- Size
  
  316KB
- MD5
  
  4478fb608ed367c0a603ab3622b4a420
- SHA1
  
  2062d8d4c3c98be93598279612ee8d73af0f2d24
- SHA256
  
  c76c40075cd7eddd8123c47423c6a8f605be9ee4bf62c0d8c1a2e94d25a07087
- SHA512
  
  8e056ca8d50ac71bac62d5c6ec629114c3e4acd07097ff2e09cd941ac3de476578b3ecf2449438f88052315148b65b2e96599b6e74a833442d1c1279ba21baca
- SSDEEP
  
  6144:9rmbUzkuvcBYC47l2xkihNbvnXz3ma0QKctzwl2hvsbHGJT:9rvkuveY3ibXz3UQKctk2hsbi
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2