c42035b2df5d2d5d679e1a865a6ec31d6ef7d7e25b5199bde49162712f2a0fb2 | Triage

Sharing

General

Target

c42035b2df5d2d5d679e1a865a6ec31d6ef7d7e25b5199bde49162712f2a0fb2
Size

312KB
Sample

221029-rzzd5sbgfp
MD5

00478c1af9e03debc0a7e1985dca5174
SHA1

381dbd97d36a0cfc15541620adbcb73fadf3b2b3
SHA256

c42035b2df5d2d5d679e1a865a6ec31d6ef7d7e25b5199bde49162712f2a0fb2
SHA512

ad7713f0910ca98530e678b788956b6a0a4ef0c557a0096c3d6d678aadb46a3fc7957691d70cb79b791d99e443ceb84426b28d648be2657ead90c1c59a1e8307
SSDEEP

6144:RrkS9uEo2S1YnQmCX492DkwNP3qpYFK3WSsmbjbqKcs3wP8pXAN7iCZ:Rrkau6/eIo43ts7KcXgXAN7ig

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c42035b2df5d2d5d679e1a865a6ec31d6ef7d7e25b5199bde49162712f2a0fb2
- Size
  
  312KB
- MD5
  
  00478c1af9e03debc0a7e1985dca5174
- SHA1
  
  381dbd97d36a0cfc15541620adbcb73fadf3b2b3
- SHA256
  
  c42035b2df5d2d5d679e1a865a6ec31d6ef7d7e25b5199bde49162712f2a0fb2
- SHA512
  
  ad7713f0910ca98530e678b788956b6a0a4ef0c557a0096c3d6d678aadb46a3fc7957691d70cb79b791d99e443ceb84426b28d648be2657ead90c1c59a1e8307
- SSDEEP
  
  6144:RrkS9uEo2S1YnQmCX492DkwNP3qpYFK3WSsmbjbqKcs3wP8pXAN7iCZ:Rrkau6/eIo43ts7KcXgXAN7ig
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2