00fedbd833ff2b470e66247312aca2a49cb158096f18b7451cfe97cc3b541a14 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

00fedbd833ff2b470e66247312aca2a49cb158096f18b7451cfe97cc3b541a14
Size

313KB
Sample

221029-c2187ahab2
MD5

a386624645673cce7f9d26c82061b993
SHA1

af245ae1b110dd42fd50a5de71ee7e13e5e363f6
SHA256

00fedbd833ff2b470e66247312aca2a49cb158096f18b7451cfe97cc3b541a14
SHA512

05a4ff924ac165e2085150b5019b1094757a2b3fde2e474d69ebc128663bf656b3073f5107629ae2ee7f3c94434146e9e3905462f9700b4586e5823574f96dc2
SSDEEP

6144:orb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMY:orRu6/eIo4t3PuFITKUAX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  00fedbd833ff2b470e66247312aca2a49cb158096f18b7451cfe97cc3b541a14
- Size
  
  313KB
- MD5
  
  a386624645673cce7f9d26c82061b993
- SHA1
  
  af245ae1b110dd42fd50a5de71ee7e13e5e363f6
- SHA256
  
  00fedbd833ff2b470e66247312aca2a49cb158096f18b7451cfe97cc3b541a14
- SHA512
  
  05a4ff924ac165e2085150b5019b1094757a2b3fde2e474d69ebc128663bf656b3073f5107629ae2ee7f3c94434146e9e3905462f9700b4586e5823574f96dc2
- SSDEEP
  
  6144:orb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMY:orRu6/eIo4t3PuFITKUAX
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2