dd1c4cff4e9e382b7e8275587ed9536d550e7d11035524ff1dc07dfd43dac742 | Triage

Sharing

General

Target

dd1c4cff4e9e382b7e8275587ed9536d550e7d11035524ff1dc07dfd43dac742
Size

313KB
Sample

221123-h5e31sad3x
MD5

cb6d182012a81a3fa95625fe0a1a58dc
SHA1

8bf5178b79997e95be08c8daea6a173fbb836513
SHA256

dd1c4cff4e9e382b7e8275587ed9536d550e7d11035524ff1dc07dfd43dac742
SHA512

931aeee199fa03aa8c7f706b41f1da1182b44310341c3300c689186e3ff41ad103c74d7d2212050d203807cbd9eaf9b82809ae3cc517b5f7575abeca93376506
SSDEEP

6144:wrkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijY5H:wrk4u6/eIo4nlu7trxFtApfgMyrpjYJ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  dd1c4cff4e9e382b7e8275587ed9536d550e7d11035524ff1dc07dfd43dac742
- Size
  
  313KB
- MD5
  
  cb6d182012a81a3fa95625fe0a1a58dc
- SHA1
  
  8bf5178b79997e95be08c8daea6a173fbb836513
- SHA256
  
  dd1c4cff4e9e382b7e8275587ed9536d550e7d11035524ff1dc07dfd43dac742
- SHA512
  
  931aeee199fa03aa8c7f706b41f1da1182b44310341c3300c689186e3ff41ad103c74d7d2212050d203807cbd9eaf9b82809ae3cc517b5f7575abeca93376506
- SSDEEP
  
  6144:wrkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijY5H:wrk4u6/eIo4nlu7trxFtApfgMyrpjYJ
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2