df3f67467ac2a40d4aa2abeb0951a2677e199c6c5c7f96c07474150fda1e3db9 | Triage

Sharing

General

Target

df3f67467ac2a40d4aa2abeb0951a2677e199c6c5c7f96c07474150fda1e3db9
Size

327KB
Sample

221123-h4dtkaeh43
MD5

42ab650174e67ab74201ffc0604bf0d4
SHA1

4cd4ba575c6b3daea6f9d8f5fdd5b6793d10c485
SHA256

df3f67467ac2a40d4aa2abeb0951a2677e199c6c5c7f96c07474150fda1e3db9
SHA512

e893fcd6a7fa4fc555af6fe4e1798a84dfa23ea57fb5aa202c6f6107e650ae8345efc1cf8544f3cc85c9afeb066b44364376ad80bebfa4d28abca211f8a08283
SSDEEP

6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FT:Rr4iu6/eIo4Rsw33AtsmQS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  df3f67467ac2a40d4aa2abeb0951a2677e199c6c5c7f96c07474150fda1e3db9
- Size
  
  327KB
- MD5
  
  42ab650174e67ab74201ffc0604bf0d4
- SHA1
  
  4cd4ba575c6b3daea6f9d8f5fdd5b6793d10c485
- SHA256
  
  df3f67467ac2a40d4aa2abeb0951a2677e199c6c5c7f96c07474150fda1e3db9
- SHA512
  
  e893fcd6a7fa4fc555af6fe4e1798a84dfa23ea57fb5aa202c6f6107e650ae8345efc1cf8544f3cc85c9afeb066b44364376ad80bebfa4d28abca211f8a08283
- SSDEEP
  
  6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FT:Rr4iu6/eIo4Rsw33AtsmQS
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2