df250aea427645a6c9c7eec3599e7f0a6e0a7247a01e3ed03363d5032bd6a6c8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NOC-888480.exe
Size

349KB
Sample

221104-qeyfnshdhr
MD5

c9594347dc301c96013948cfafecfe30
SHA1

14b9c8a302628104e445d79707b2b9e5ac6a4b4e
SHA256

df250aea427645a6c9c7eec3599e7f0a6e0a7247a01e3ed03363d5032bd6a6c8
SHA512

e9735521ccdd121746cc0e36a9556b3d6d321f4af1960077331656181a484a2b1b77165442743f39200bd038651a7c07cf841c1d9a15eeffe3dd0d40061fb5fb
SSDEEP

6144:8Ya64To0x7DlvxRDx6ldlOWUzVHcSZh32HrDtnu0wv:8YeTo0x7DlvLDx6zlSieh3GFupv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  NOC-888480.exe
- Size
  
  349KB
- MD5
  
  c9594347dc301c96013948cfafecfe30
- SHA1
  
  14b9c8a302628104e445d79707b2b9e5ac6a4b4e
- SHA256
  
  df250aea427645a6c9c7eec3599e7f0a6e0a7247a01e3ed03363d5032bd6a6c8
- SHA512
  
  e9735521ccdd121746cc0e36a9556b3d6d321f4af1960077331656181a484a2b1b77165442743f39200bd038651a7c07cf841c1d9a15eeffe3dd0d40061fb5fb
- SSDEEP
  
  6144:8Ya64To0x7DlvxRDx6ldlOWUzVHcSZh32HrDtnu0wv:8YeTo0x7DlvLDx6zlSieh3GFupv
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2