c8e094f441c0b86fecc66361fb7a6ddfabec9c765366ab45b798e1fe1c7f45b8 | Triage

Sharing

General

Target

c8e094f441c0b86fecc66361fb7a6ddfabec9c765366ab45b798e1fe1c7f45b8
Size

325KB
Sample

221123-jd4gzafd24
MD5

8b6a32bd2990cf7c02165342ede101c8
SHA1

ddf0212b646e566cc251310bd92b929062c8edcd
SHA256

c8e094f441c0b86fecc66361fb7a6ddfabec9c765366ab45b798e1fe1c7f45b8
SHA512

6bf45a64f61b68d19df4fd4bd4433163b13bc8bd91b60e361bd0d984ce5765bdd166f0336a5797e40331dd3b70e5be95bb17bd30448a4d9049b1c28f3c60e543
SSDEEP

6144:0r1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5o3:0r1B3u6/eIo4ArVUBQCCYOqmO5o3

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c8e094f441c0b86fecc66361fb7a6ddfabec9c765366ab45b798e1fe1c7f45b8
- Size
  
  325KB
- MD5
  
  8b6a32bd2990cf7c02165342ede101c8
- SHA1
  
  ddf0212b646e566cc251310bd92b929062c8edcd
- SHA256
  
  c8e094f441c0b86fecc66361fb7a6ddfabec9c765366ab45b798e1fe1c7f45b8
- SHA512
  
  6bf45a64f61b68d19df4fd4bd4433163b13bc8bd91b60e361bd0d984ce5765bdd166f0336a5797e40331dd3b70e5be95bb17bd30448a4d9049b1c28f3c60e543
- SSDEEP
  
  6144:0r1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5o3:0r1B3u6/eIo4ArVUBQCCYOqmO5o3
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2