dd58d4614db60e52638129cda984a173e8691d600f49d82b0d8f6db56f00d6e2 | Triage

Sharing

General

Target

dd58d4614db60e52638129cda984a173e8691d600f49d82b0d8f6db56f00d6e2
Size

326KB
Sample

221123-h5a43aeh72
MD5

3b47f75b6b32b159d78c2447bdca6b35
SHA1

4e0d930c53cf76e49611f366d80f81bc6a5e77f7
SHA256

dd58d4614db60e52638129cda984a173e8691d600f49d82b0d8f6db56f00d6e2
SHA512

10c6ff5884eb85c35a52b88060db552e800694ba32618d8010998830ac41abf634b778d572c81d5c71844225ddf4f10aaf4d111f2feab623d77353d3ec10f054
SSDEEP

6144:6r4I9uEo2S1YnQmCX492DkwNP3qpYFuT9U1FZA5MRwxuhhfch6clgq:6r4gu6/eIo4nULZKMRwxuPfk6y

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  dd58d4614db60e52638129cda984a173e8691d600f49d82b0d8f6db56f00d6e2
- Size
  
  326KB
- MD5
  
  3b47f75b6b32b159d78c2447bdca6b35
- SHA1
  
  4e0d930c53cf76e49611f366d80f81bc6a5e77f7
- SHA256
  
  dd58d4614db60e52638129cda984a173e8691d600f49d82b0d8f6db56f00d6e2
- SHA512
  
  10c6ff5884eb85c35a52b88060db552e800694ba32618d8010998830ac41abf634b778d572c81d5c71844225ddf4f10aaf4d111f2feab623d77353d3ec10f054
- SSDEEP
  
  6144:6r4I9uEo2S1YnQmCX492DkwNP3qpYFuT9U1FZA5MRwxuhhfch6clgq:6r4gu6/eIo4nULZKMRwxuPfk6y
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2