333670ecbcc9e78f458bfc9d59d9edc8325c22b75704f66ffcba6e41bc4e4fab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

333670ecbcc9e78f458bfc9d59d9edc8325c22b75704f66ffcba6e41bc4e4fab
Size

313KB
Sample

221029-f5f9zadddr
MD5

e894f081d7fdd6fceed77ad679fa301b
SHA1

8eca05122fb3c979c29e35e6605008f0a7c65cec
SHA256

333670ecbcc9e78f458bfc9d59d9edc8325c22b75704f66ffcba6e41bc4e4fab
SHA512

37ed556cef4256158258a742ee8afa62e009bc9bf55c560c2cbfe80c36622045645577a8927c5cbd93270921aed9c54e4ed88cbd49e13bc0f2217ec17b914dcc
SSDEEP

6144:RrJ9uEo2S1YnQmCX492DkwNP3qpYFkwlWKM23DpJQ+JXUOy1Lr3Dv1A+CiyGdUza:Rrfu6/eIo4XwlWKM231t5UnRr3DdRp5f

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  333670ecbcc9e78f458bfc9d59d9edc8325c22b75704f66ffcba6e41bc4e4fab
- Size
  
  313KB
- MD5
  
  e894f081d7fdd6fceed77ad679fa301b
- SHA1
  
  8eca05122fb3c979c29e35e6605008f0a7c65cec
- SHA256
  
  333670ecbcc9e78f458bfc9d59d9edc8325c22b75704f66ffcba6e41bc4e4fab
- SHA512
  
  37ed556cef4256158258a742ee8afa62e009bc9bf55c560c2cbfe80c36622045645577a8927c5cbd93270921aed9c54e4ed88cbd49e13bc0f2217ec17b914dcc
- SSDEEP
  
  6144:RrJ9uEo2S1YnQmCX492DkwNP3qpYFkwlWKM23DpJQ+JXUOy1Lr3Dv1A+CiyGdUza:Rrfu6/eIo4XwlWKM231t5UnRr3DdRp5f
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2