c6d9d83017e006a6d3665b7adceb38587a774de49f656998873ee2d11365dfc9 | Triage

Sharing

General

Target

c6d9d83017e006a6d3665b7adceb38587a774de49f656998873ee2d11365dfc9
Size

313KB
Sample

221029-mgzvqsdadm
MD5

cbfb2a6aed26d184a92ba52ec205ebbd
SHA1

ddd0897222010befbf0860bfbc6e044dd9257281
SHA256

c6d9d83017e006a6d3665b7adceb38587a774de49f656998873ee2d11365dfc9
SHA512

8ef52444cd2358ca1da98fce3560bb0d874c8a0f12b87e70f99c1d44804697e43c226d39ee8d21b66d16950416a07da7e00f8951458e23145a1dd274b40a9ad8
SSDEEP

6144:3rK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0Ly:3ryu6/eIo4vMResyEf0uP9d9UG0y

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c6d9d83017e006a6d3665b7adceb38587a774de49f656998873ee2d11365dfc9
- Size
  
  313KB
- MD5
  
  cbfb2a6aed26d184a92ba52ec205ebbd
- SHA1
  
  ddd0897222010befbf0860bfbc6e044dd9257281
- SHA256
  
  c6d9d83017e006a6d3665b7adceb38587a774de49f656998873ee2d11365dfc9
- SHA512
  
  8ef52444cd2358ca1da98fce3560bb0d874c8a0f12b87e70f99c1d44804697e43c226d39ee8d21b66d16950416a07da7e00f8951458e23145a1dd274b40a9ad8
- SSDEEP
  
  6144:3rK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0Ly:3ryu6/eIo4vMResyEf0uP9d9UG0y
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2