d3ad0fdd90737ada500055558b38d33a62a4f000c042f2b8e0e7cd485ab53289 | Triage

Sharing

General

Target

d3ad0fdd90737ada500055558b38d33a62a4f000c042f2b8e0e7cd485ab53289
Size

327KB
Sample

221123-h9ctfsae7t
MD5

d94e12d532aeb64daa2136074aff500c
SHA1

56185125be8ba3b7c033b8bffade16e6de6bd78e
SHA256

d3ad0fdd90737ada500055558b38d33a62a4f000c042f2b8e0e7cd485ab53289
SHA512

e8eb6d1d9c4bb7f956bc9deced6dfae1d6b7f84214f4745b95c8cd018713b39a7f70a02184155bd3485ef3700fbe6bdfc30946392092114f43ead240527e75f3
SSDEEP

6144:Jr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F+:Jr4iu6/eIo4Rsw33AtsmQP

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d3ad0fdd90737ada500055558b38d33a62a4f000c042f2b8e0e7cd485ab53289
- Size
  
  327KB
- MD5
  
  d94e12d532aeb64daa2136074aff500c
- SHA1
  
  56185125be8ba3b7c033b8bffade16e6de6bd78e
- SHA256
  
  d3ad0fdd90737ada500055558b38d33a62a4f000c042f2b8e0e7cd485ab53289
- SHA512
  
  e8eb6d1d9c4bb7f956bc9deced6dfae1d6b7f84214f4745b95c8cd018713b39a7f70a02184155bd3485ef3700fbe6bdfc30946392092114f43ead240527e75f3
- SSDEEP
  
  6144:Jr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F+:Jr4iu6/eIo4Rsw33AtsmQP
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2