fddba83b58f2d969889e9e68d289e9c562e2fe621513bdc5edc933c478d53c1b | Triage

Sharing

General

Target

fddba83b58f2d969889e9e68d289e9c562e2fe621513bdc5edc933c478d53c1b
Size

313KB
Sample

221123-hpqvkseb93
MD5

605baf40aa5c7a26f6f004d3f09d45eb
SHA1

233fd2b5e2d3c8a5b1924da89b6b98a0f090f5e4
SHA256

fddba83b58f2d969889e9e68d289e9c562e2fe621513bdc5edc933c478d53c1b
SHA512

0e7b32fcea142f0d37c61b49b692388c40c55973017385146b47fad3cf58ea963af310909d48ba7620833ac72e50923e51b9ca5877f46c2aaa9c9c8eb9fe876f
SSDEEP

6144:wrkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYr:wrk4u6/eIo4nlu7trxFtApfgMyrpjYr

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fddba83b58f2d969889e9e68d289e9c562e2fe621513bdc5edc933c478d53c1b
- Size
  
  313KB
- MD5
  
  605baf40aa5c7a26f6f004d3f09d45eb
- SHA1
  
  233fd2b5e2d3c8a5b1924da89b6b98a0f090f5e4
- SHA256
  
  fddba83b58f2d969889e9e68d289e9c562e2fe621513bdc5edc933c478d53c1b
- SHA512
  
  0e7b32fcea142f0d37c61b49b692388c40c55973017385146b47fad3cf58ea963af310909d48ba7620833ac72e50923e51b9ca5877f46c2aaa9c9c8eb9fe876f
- SSDEEP
  
  6144:wrkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYr:wrk4u6/eIo4nlu7trxFtApfgMyrpjYr
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2