c95a2bbeec77a2f89fe75a8245e6324116219b4d834cdeaa6af45d59b08c9f99 | Triage

Sharing

General

Target

c95a2bbeec77a2f89fe75a8245e6324116219b4d834cdeaa6af45d59b08c9f99
Size

316KB
Sample

221123-jdz5jsag5y
MD5

a4aff4917811a24f9aca9fafb9c447f3
SHA1

fc379d3c7b4089433da3dce70f1c06aa144e5fbe
SHA256

c95a2bbeec77a2f89fe75a8245e6324116219b4d834cdeaa6af45d59b08c9f99
SHA512

a87918c6d94f30142c5889f0bcb3aa510ba4b03eefb56a16c0deca2e2d001635a9dce466ef08dbd35e9fbc0dc2e652e798c41107f0f93bcef437d9546b70baa7
SSDEEP

6144:hr9bUzkuvcBYC47l2xA0CLzrfn5Agvirxi/NRFBDArJ:hr+kuveY3hdLzrfn5A1KtBu

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c95a2bbeec77a2f89fe75a8245e6324116219b4d834cdeaa6af45d59b08c9f99
- Size
  
  316KB
- MD5
  
  a4aff4917811a24f9aca9fafb9c447f3
- SHA1
  
  fc379d3c7b4089433da3dce70f1c06aa144e5fbe
- SHA256
  
  c95a2bbeec77a2f89fe75a8245e6324116219b4d834cdeaa6af45d59b08c9f99
- SHA512
  
  a87918c6d94f30142c5889f0bcb3aa510ba4b03eefb56a16c0deca2e2d001635a9dce466ef08dbd35e9fbc0dc2e652e798c41107f0f93bcef437d9546b70baa7
- SSDEEP
  
  6144:hr9bUzkuvcBYC47l2xA0CLzrfn5Agvirxi/NRFBDArJ:hr+kuveY3hdLzrfn5A1KtBu
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2