edd3cf73f1f7f20dd3fa90519468a89a964706ffea69728bd55f498f3e832942 | Triage

Sharing

General

Target

edd3cf73f1f7f20dd3fa90519468a89a964706ffea69728bd55f498f3e832942
Size

313KB
Sample

221123-hxc9fsee74
MD5

5945667443b1d6ec909aa89a2a7adcb8
SHA1

c0effab86ff2f924a9eb555e32683366d1b0e889
SHA256

edd3cf73f1f7f20dd3fa90519468a89a964706ffea69728bd55f498f3e832942
SHA512

12111864ad13907726e823926fcd1fc131f26f137eadfd3753eb84dbedb881461a90f25bbc5a04049a173b74db8305e4b3b5a612168843295750b3817b458694
SSDEEP

6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijY1:Ark4u6/eIo4nlu7trxFtApfgMyrpjY1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  edd3cf73f1f7f20dd3fa90519468a89a964706ffea69728bd55f498f3e832942
- Size
  
  313KB
- MD5
  
  5945667443b1d6ec909aa89a2a7adcb8
- SHA1
  
  c0effab86ff2f924a9eb555e32683366d1b0e889
- SHA256
  
  edd3cf73f1f7f20dd3fa90519468a89a964706ffea69728bd55f498f3e832942
- SHA512
  
  12111864ad13907726e823926fcd1fc131f26f137eadfd3753eb84dbedb881461a90f25bbc5a04049a173b74db8305e4b3b5a612168843295750b3817b458694
- SSDEEP
  
  6144:ArkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijY1:Ark4u6/eIo4nlu7trxFtApfgMyrpjY1
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2