cf261956e721f21802b9c3d9b852bf63fd948a8dc1749ebefeb399f18a0c32bf | Triage

Sharing

General

Target

cf261956e721f21802b9c3d9b852bf63fd948a8dc1749ebefeb399f18a0c32bf
Size

316KB
Sample

221123-ja3q9sfb95
MD5

bb8685f7301d57cabc4b5308cf8465f4
SHA1

ad00fab2262cac1765d4989859e3aed8adb3006f
SHA256

cf261956e721f21802b9c3d9b852bf63fd948a8dc1749ebefeb399f18a0c32bf
SHA512

7035fd8267383387c6c32858b9c2340f5131009737c56c4bc2e13ae33268af788c2e563676635c803111ed891a0d56e0543fc896190fe142e61e358e43fd50c4
SSDEEP

6144:RrvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVH:RrkkuveY3zhlV6tmDxzwVH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  cf261956e721f21802b9c3d9b852bf63fd948a8dc1749ebefeb399f18a0c32bf
- Size
  
  316KB
- MD5
  
  bb8685f7301d57cabc4b5308cf8465f4
- SHA1
  
  ad00fab2262cac1765d4989859e3aed8adb3006f
- SHA256
  
  cf261956e721f21802b9c3d9b852bf63fd948a8dc1749ebefeb399f18a0c32bf
- SHA512
  
  7035fd8267383387c6c32858b9c2340f5131009737c56c4bc2e13ae33268af788c2e563676635c803111ed891a0d56e0543fc896190fe142e61e358e43fd50c4
- SSDEEP
  
  6144:RrvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVH:RrkkuveY3zhlV6tmDxzwVH
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2