c0bef69cc845d5db79ea242d4abfbb0b0a33475aefd2b82f1835a83f827971fd | Triage

Sharing

General

Target

c0bef69cc845d5db79ea242d4abfbb0b0a33475aefd2b82f1835a83f827971fd
Size

327KB
Sample

221123-jhx6raah8v
MD5

80aa40190036202c2cff287fd89b3e3f
SHA1

16d5fff0ac6f6932b4f0c16822951a3f3e661e16
SHA256

c0bef69cc845d5db79ea242d4abfbb0b0a33475aefd2b82f1835a83f827971fd
SHA512

cc9d58ce7e594e7e2c15b2fed3a81660cc5cdd6e41b25a4e406ddc462a48d173590c7750bc1d212dcfa0cdbade72b0160ae6758040bfbe402bcd5f167e431e16
SSDEEP

6144:VrVbUzkuvcBYC47l2xt81bM31jFryMm/+3pZasr0AtbgTtCybrNMc1:VrGkuveY38aExzr3pZh0d8EJ91

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c0bef69cc845d5db79ea242d4abfbb0b0a33475aefd2b82f1835a83f827971fd
- Size
  
  327KB
- MD5
  
  80aa40190036202c2cff287fd89b3e3f
- SHA1
  
  16d5fff0ac6f6932b4f0c16822951a3f3e661e16
- SHA256
  
  c0bef69cc845d5db79ea242d4abfbb0b0a33475aefd2b82f1835a83f827971fd
- SHA512
  
  cc9d58ce7e594e7e2c15b2fed3a81660cc5cdd6e41b25a4e406ddc462a48d173590c7750bc1d212dcfa0cdbade72b0160ae6758040bfbe402bcd5f167e431e16
- SSDEEP
  
  6144:VrVbUzkuvcBYC47l2xt81bM31jFryMm/+3pZasr0AtbgTtCybrNMc1:VrGkuveY38aExzr3pZh0d8EJ91
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2