cb13d5dea9ab0805664039cdd6b4c91ac70dd95e6058c0cabf4881e18b8ee414 | Triage

Sharing

General

Target

cb13d5dea9ab0805664039cdd6b4c91ac70dd95e6058c0cabf4881e18b8ee414
Size

327KB
Sample

221123-jc67gafc77
MD5

2c229f6a91906d395147aa07f3a60a21
SHA1

b17965851ea4f2c24e436c1c7e4330c20d398e99
SHA256

cb13d5dea9ab0805664039cdd6b4c91ac70dd95e6058c0cabf4881e18b8ee414
SHA512

400062452753f63d939a535557face5d544bd6124a73f55422ffa84f09885137f54e27fd06393122e142ee283354da97af5bfdeaa18f4eb8350b801ccf513769
SSDEEP

6144:Br469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FV:Br4iu6/eIo4Rsw33AtsmQc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  cb13d5dea9ab0805664039cdd6b4c91ac70dd95e6058c0cabf4881e18b8ee414
- Size
  
  327KB
- MD5
  
  2c229f6a91906d395147aa07f3a60a21
- SHA1
  
  b17965851ea4f2c24e436c1c7e4330c20d398e99
- SHA256
  
  cb13d5dea9ab0805664039cdd6b4c91ac70dd95e6058c0cabf4881e18b8ee414
- SHA512
  
  400062452753f63d939a535557face5d544bd6124a73f55422ffa84f09885137f54e27fd06393122e142ee283354da97af5bfdeaa18f4eb8350b801ccf513769
- SSDEEP
  
  6144:Br469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FV:Br4iu6/eIo4Rsw33AtsmQc
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2