3cdfee5d8d150df05dd5c866e9a70c04207b5e3ba10df8c991a87388c12252c6 | Triage

Sharing

General

Target

3cdfee5d8d150df05dd5c866e9a70c04207b5e3ba10df8c991a87388c12252c6
Size

230KB
Sample

221029-rpqdgsaee6
MD5

b3f4ce02b076041cece19d993c231ead
SHA1

b926e45be0cba9a4d80764709e769e0ecf27fcb3
SHA256

3cdfee5d8d150df05dd5c866e9a70c04207b5e3ba10df8c991a87388c12252c6
SHA512

a21994d46d39bb20ac8351cf1a59ce2d81a2a9920b5233c53c4ef3f1b2a5a3f0e5d56e2f1ae4e41369d617b471bcb02d71b33fd2435803b2acd31b5331269820
SSDEEP

3072:Sbrdx8840dTwxUWTmR9mPP3HlW0rIVXtY8SRyK+SCdYEuWRKLlfrWpCRR91jHYQP:SbrdxW4s21mPExdY3yK+/hNoypyhX/

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  3cdfee5d8d150df05dd5c866e9a70c04207b5e3ba10df8c991a87388c12252c6
- Size
  
  230KB
- MD5
  
  b3f4ce02b076041cece19d993c231ead
- SHA1
  
  b926e45be0cba9a4d80764709e769e0ecf27fcb3
- SHA256
  
  3cdfee5d8d150df05dd5c866e9a70c04207b5e3ba10df8c991a87388c12252c6
- SHA512
  
  a21994d46d39bb20ac8351cf1a59ce2d81a2a9920b5233c53c4ef3f1b2a5a3f0e5d56e2f1ae4e41369d617b471bcb02d71b33fd2435803b2acd31b5331269820
- SSDEEP
  
  3072:Sbrdx8840dTwxUWTmR9mPP3HlW0rIVXtY8SRyK+SCdYEuWRKLlfrWpCRR91jHYQP:SbrdxW4s21mPExdY3yK+/hNoypyhX/
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2