dd45021314579415fcfb257f8c6fdb04e3469410ebf338d4c6d7e5a6fb896581 | Triage

Sharing

General

Target

dd45021314579415fcfb257f8c6fdb04e3469410ebf338d4c6d7e5a6fb896581
Size

327KB
Sample

221123-h5cynaad3w
MD5

1b3dc394928abbfbee21686ed83a3169
SHA1

c49c3ed928c51340a55f553eea4d4e753c759cad
SHA256

dd45021314579415fcfb257f8c6fdb04e3469410ebf338d4c6d7e5a6fb896581
SHA512

a0631cfc8eac0b3fde3ccacf732f809104295717aa5cdbfeeb0bd7f44b5b09a5606808c6fb28695b591ef43c450a70bebe9a936fac5134a1c78cf69aa25e997f
SSDEEP

6144:xr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Ff:xr4iu6/eIo4Rsw33AtsmQW

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  dd45021314579415fcfb257f8c6fdb04e3469410ebf338d4c6d7e5a6fb896581
- Size
  
  327KB
- MD5
  
  1b3dc394928abbfbee21686ed83a3169
- SHA1
  
  c49c3ed928c51340a55f553eea4d4e753c759cad
- SHA256
  
  dd45021314579415fcfb257f8c6fdb04e3469410ebf338d4c6d7e5a6fb896581
- SHA512
  
  a0631cfc8eac0b3fde3ccacf732f809104295717aa5cdbfeeb0bd7f44b5b09a5606808c6fb28695b591ef43c450a70bebe9a936fac5134a1c78cf69aa25e997f
- SSDEEP
  
  6144:xr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Ff:xr4iu6/eIo4Rsw33AtsmQW
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2