c98d3542e8fca128fc0e41535ddd064af248f9f3df93e18aa39809a0219a4a26 | Triage

Sharing

General

Target

c98d3542e8fca128fc0e41535ddd064af248f9f3df93e18aa39809a0219a4a26
Size

313KB
Sample

221123-jdwr5afc98
MD5

5daee92699aed2d44949653c1e899856
SHA1

a5b516e44030af07cb34d2ac0e0b72600a75a35a
SHA256

c98d3542e8fca128fc0e41535ddd064af248f9f3df93e18aa39809a0219a4a26
SHA512

3934f542ddde5c4d962e4052cfb2eb1245c2a743759c5d4098f94a487ae71ae6aac62dfd6436acf0a15535a0cd19d418ae7ad8813068907af0a7eb20c4e29d09
SSDEEP

6144:orJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDP:orfu6/eIo4jVW5soVCcQovoO0DJM+EY

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c98d3542e8fca128fc0e41535ddd064af248f9f3df93e18aa39809a0219a4a26
- Size
  
  313KB
- MD5
  
  5daee92699aed2d44949653c1e899856
- SHA1
  
  a5b516e44030af07cb34d2ac0e0b72600a75a35a
- SHA256
  
  c98d3542e8fca128fc0e41535ddd064af248f9f3df93e18aa39809a0219a4a26
- SHA512
  
  3934f542ddde5c4d962e4052cfb2eb1245c2a743759c5d4098f94a487ae71ae6aac62dfd6436acf0a15535a0cd19d418ae7ad8813068907af0a7eb20c4e29d09
- SSDEEP
  
  6144:orJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDP:orfu6/eIo4jVW5soVCcQovoO0DJM+EY
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2