d4ff2897f6dc3aa5aa884c5eedbcab4e7e0ef52d477f43aa43e78b23433530f7 | Triage

Sharing

General

Target

d4ff2897f6dc3aa5aa884c5eedbcab4e7e0ef52d477f43aa43e78b23433530f7
Size

325KB
Sample

221123-h8n54afa93
MD5

d9d31933eb7a9802671b626b86d6b7a3
SHA1

933fc2277111f6d5f8db01f4307cd3ecc0dacc71
SHA256

d4ff2897f6dc3aa5aa884c5eedbcab4e7e0ef52d477f43aa43e78b23433530f7
SHA512

340467c21e8f4029c6ec3ad2ac139261e7379b8cd79e97fef5363a4303ef85929478ea1b37550861e59b25094ada34b554f1101c8a5137150de69aa87d9a758e
SSDEEP

6144:cr1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5oQ:cr1B3u6/eIo4ArVUBQCCYOqmO5oQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d4ff2897f6dc3aa5aa884c5eedbcab4e7e0ef52d477f43aa43e78b23433530f7
- Size
  
  325KB
- MD5
  
  d9d31933eb7a9802671b626b86d6b7a3
- SHA1
  
  933fc2277111f6d5f8db01f4307cd3ecc0dacc71
- SHA256
  
  d4ff2897f6dc3aa5aa884c5eedbcab4e7e0ef52d477f43aa43e78b23433530f7
- SHA512
  
  340467c21e8f4029c6ec3ad2ac139261e7379b8cd79e97fef5363a4303ef85929478ea1b37550861e59b25094ada34b554f1101c8a5137150de69aa87d9a758e
- SSDEEP
  
  6144:cr1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5oQ:cr1B3u6/eIo4ArVUBQCCYOqmO5oQ
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2