cd30b4d76a826db108c8205089d0e48153b05c6743bf23b585d086c507d8423d | Triage

Sharing

General

Target

cd30b4d76a826db108c8205089d0e48153b05c6743bf23b585d086c507d8423d
Size

313KB
Sample

221123-jb2klaaf7w
MD5

8a4d0602d83f78dcec13c9ff51a4ea4f
SHA1

a9de6011f98fc15afb1d5d098d975f19f83615e0
SHA256

cd30b4d76a826db108c8205089d0e48153b05c6743bf23b585d086c507d8423d
SHA512

2eb8c4e025d0a2958e4fb654f1641af018623c1f6f6ae48e593cac1a6f09a3f3a0e92a4353cc968188afa4e73322c6b82ac32dbba9c14e1c7a0492f9a8172993
SSDEEP

6144:orkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYD:ork4u6/eIo4nlu7trxFtApfgMyrpjYD

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  cd30b4d76a826db108c8205089d0e48153b05c6743bf23b585d086c507d8423d
- Size
  
  313KB
- MD5
  
  8a4d0602d83f78dcec13c9ff51a4ea4f
- SHA1
  
  a9de6011f98fc15afb1d5d098d975f19f83615e0
- SHA256
  
  cd30b4d76a826db108c8205089d0e48153b05c6743bf23b585d086c507d8423d
- SHA512
  
  2eb8c4e025d0a2958e4fb654f1641af018623c1f6f6ae48e593cac1a6f09a3f3a0e92a4353cc968188afa4e73322c6b82ac32dbba9c14e1c7a0492f9a8172993
- SSDEEP
  
  6144:orkA9uEo2S1YnQmCX492DkwNP3qpYF0lu7tIYxFtApNhiYLE2/5yr3+LijYD:ork4u6/eIo4nlu7trxFtApfgMyrpjYD
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2