c20ecd631a54151630545df6457e34aa39d321caa6a3e8b1c15fde99aa9e51b0 | Triage

Sharing

General

Target

c20ecd631a54151630545df6457e34aa39d321caa6a3e8b1c15fde99aa9e51b0
Size

313KB
Sample

221123-jg8k4aah5z
MD5

181ba267ee336db28e61ae283e325f11
SHA1

8cefb47de012a93db320c428cf8d4dbfffabd19e
SHA256

c20ecd631a54151630545df6457e34aa39d321caa6a3e8b1c15fde99aa9e51b0
SHA512

21b527cf9258d85d3b5173c6386ae8c0033e7899551c58349ca6d6521a80f9564eca5fe2c6ccbbf54382ad5773f164f5c53ad5835307a80a4f444852939f1e36
SSDEEP

6144:Rrb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMQc:RrRu6/eIo4t3PuFITKUAk

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c20ecd631a54151630545df6457e34aa39d321caa6a3e8b1c15fde99aa9e51b0
- Size
  
  313KB
- MD5
  
  181ba267ee336db28e61ae283e325f11
- SHA1
  
  8cefb47de012a93db320c428cf8d4dbfffabd19e
- SHA256
  
  c20ecd631a54151630545df6457e34aa39d321caa6a3e8b1c15fde99aa9e51b0
- SHA512
  
  21b527cf9258d85d3b5173c6386ae8c0033e7899551c58349ca6d6521a80f9564eca5fe2c6ccbbf54382ad5773f164f5c53ad5835307a80a4f444852939f1e36
- SSDEEP
  
  6144:Rrb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMQc:RrRu6/eIo4t3PuFITKUAk
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2