dea8cc883eadf5b3ed8a08ca0ff6fe344956b2087c7da8c094d0642504e8bfec | Triage

Sharing

General

Target

dea8cc883eadf5b3ed8a08ca0ff6fe344956b2087c7da8c094d0642504e8bfec
Size

313KB
Sample

221123-h4lt6sac8z
MD5

8554f85241548bc2eae091a1f2387c3b
SHA1

a1d652c526eb281d2601da73eb588a69571930df
SHA256

dea8cc883eadf5b3ed8a08ca0ff6fe344956b2087c7da8c094d0642504e8bfec
SHA512

c15d794588c35b7d9d22acd4ebea5d07ebda785c85cc00efadc5eebb2ef106ebbf43c4e3f1b3158dea4f90092f5b2c26393ee9bcabe7f3778c01512674329351
SSDEEP

6144:orJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDx:orfu6/eIo4jVW5soVCcQovoO0DJM+E+

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  dea8cc883eadf5b3ed8a08ca0ff6fe344956b2087c7da8c094d0642504e8bfec
- Size
  
  313KB
- MD5
  
  8554f85241548bc2eae091a1f2387c3b
- SHA1
  
  a1d652c526eb281d2601da73eb588a69571930df
- SHA256
  
  dea8cc883eadf5b3ed8a08ca0ff6fe344956b2087c7da8c094d0642504e8bfec
- SHA512
  
  c15d794588c35b7d9d22acd4ebea5d07ebda785c85cc00efadc5eebb2ef106ebbf43c4e3f1b3158dea4f90092f5b2c26393ee9bcabe7f3778c01512674329351
- SSDEEP
  
  6144:orJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDx:orfu6/eIo4jVW5soVCcQovoO0DJM+E+
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2