c611f9a94e144689e301222d5d50925c48ab04e77b36ac016f813a20c7f19387 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c611f9a94e144689e301222d5d50925c48ab04e77b36ac016f813a20c7f19387
Size

327KB
Sample

221029-cxy82aggg5
MD5

2d0f9eac035f03a966b2592ee0e1ad3c
SHA1

fba6accdbe74eee9196afb35db4fef82e9e7c340
SHA256

c611f9a94e144689e301222d5d50925c48ab04e77b36ac016f813a20c7f19387
SHA512

f1587b0a8b8ef77981099b3b3d6297b66bf85560fc5a8cc5f528be0082a410cdecfbb048569093f4bc648f83cbaedb47aff5d3498247e8c88205302ea0ead1aa
SSDEEP

6144:Ar469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fn:Ar4iu6/eIo4Rsw33AtsmQm

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c611f9a94e144689e301222d5d50925c48ab04e77b36ac016f813a20c7f19387
- Size
  
  327KB
- MD5
  
  2d0f9eac035f03a966b2592ee0e1ad3c
- SHA1
  
  fba6accdbe74eee9196afb35db4fef82e9e7c340
- SHA256
  
  c611f9a94e144689e301222d5d50925c48ab04e77b36ac016f813a20c7f19387
- SHA512
  
  f1587b0a8b8ef77981099b3b3d6297b66bf85560fc5a8cc5f528be0082a410cdecfbb048569093f4bc648f83cbaedb47aff5d3498247e8c88205302ea0ead1aa
- SSDEEP
  
  6144:Ar469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fn:Ar4iu6/eIo4Rsw33AtsmQm
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2