c3858ce951643c11da0a4ca449b8eba5b4afa71ed55cd8b0cb4c1c5211384a78 | Triage

Sharing

General

Target

c3858ce951643c11da0a4ca449b8eba5b4afa71ed55cd8b0cb4c1c5211384a78
Size

327KB
Sample

221123-jgkh9sah4y
MD5

0617fcc73887ab597821df5554686de5
SHA1

0a5c5e0bb75900bcb4b8f8e5cbf1a38b2022a12d
SHA256

c3858ce951643c11da0a4ca449b8eba5b4afa71ed55cd8b0cb4c1c5211384a78
SHA512

130ea52e87c9161290f1d82976328ff4288723504c9c6e2c82049a73c41b259387d6d7da7835f2876ec1fc838426fe3614e9a8a3fc27825a9a880e23c11cd13e
SSDEEP

6144:Jr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FW:Jr4iu6/eIo4Rsw33AtsmQb

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c3858ce951643c11da0a4ca449b8eba5b4afa71ed55cd8b0cb4c1c5211384a78
- Size
  
  327KB
- MD5
  
  0617fcc73887ab597821df5554686de5
- SHA1
  
  0a5c5e0bb75900bcb4b8f8e5cbf1a38b2022a12d
- SHA256
  
  c3858ce951643c11da0a4ca449b8eba5b4afa71ed55cd8b0cb4c1c5211384a78
- SHA512
  
  130ea52e87c9161290f1d82976328ff4288723504c9c6e2c82049a73c41b259387d6d7da7835f2876ec1fc838426fe3614e9a8a3fc27825a9a880e23c11cd13e
- SSDEEP
  
  6144:Jr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FW:Jr4iu6/eIo4Rsw33AtsmQb
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2