c95ce9ce7764e14973c44e4ce5d9e8ae7f359a7497f32bd10ef80bdf79f4d741 | Triage

Sharing

General

Target

c95ce9ce7764e14973c44e4ce5d9e8ae7f359a7497f32bd10ef80bdf79f4d741
Size

325KB
Sample

221123-jdzh1sag5x
MD5

da2472c3b4adedea0f901369e8037b9a
SHA1

479fac8aa988073ddaf9b61c6503fd2d95cbc7d8
SHA256

c95ce9ce7764e14973c44e4ce5d9e8ae7f359a7497f32bd10ef80bdf79f4d741
SHA512

a16bcd72f6df4823a92b78c8bba56a339150e397df8677727a3f7fca6340eaba1b4b27baff8055b0a749ad863bd390fc61acb64751430a793ef5a6fa27c4a227
SSDEEP

6144:kr1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5oq:kr1B3u6/eIo4ArVUBQCCYOqmO5oq

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c95ce9ce7764e14973c44e4ce5d9e8ae7f359a7497f32bd10ef80bdf79f4d741
- Size
  
  325KB
- MD5
  
  da2472c3b4adedea0f901369e8037b9a
- SHA1
  
  479fac8aa988073ddaf9b61c6503fd2d95cbc7d8
- SHA256
  
  c95ce9ce7764e14973c44e4ce5d9e8ae7f359a7497f32bd10ef80bdf79f4d741
- SHA512
  
  a16bcd72f6df4823a92b78c8bba56a339150e397df8677727a3f7fca6340eaba1b4b27baff8055b0a749ad863bd390fc61acb64751430a793ef5a6fa27c4a227
- SSDEEP
  
  6144:kr1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5oq:kr1B3u6/eIo4ArVUBQCCYOqmO5oq
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2