b4ce2cf1ef42d51afe99772aac9709d8c7dbb98d257bc5560569264a65fb770d | Triage

Sharing

General

Target

b4ce2cf1ef42d51afe99772aac9709d8c7dbb98d257bc5560569264a65fb770d
Size

315KB
Sample

221123-jn3cnabb7t
MD5

3d2bd24129d5259488f55e92149d1730
SHA1

62e2306aa12df594cdeac29c58ba2785f97a08e5
SHA256

b4ce2cf1ef42d51afe99772aac9709d8c7dbb98d257bc5560569264a65fb770d
SHA512

32c0da3339538666cd112e3b05a3634e1bf814607a232b6f20f74a60c6c98497efe5e4d7b412646a6c4ae5037bba5cc24a9a355c21c00ea0d6ccc5a14f87ed60
SSDEEP

6144:ErYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZW:ErdkuveY3CvI5Zdkj6OEu1HSW

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b4ce2cf1ef42d51afe99772aac9709d8c7dbb98d257bc5560569264a65fb770d
- Size
  
  315KB
- MD5
  
  3d2bd24129d5259488f55e92149d1730
- SHA1
  
  62e2306aa12df594cdeac29c58ba2785f97a08e5
- SHA256
  
  b4ce2cf1ef42d51afe99772aac9709d8c7dbb98d257bc5560569264a65fb770d
- SHA512
  
  32c0da3339538666cd112e3b05a3634e1bf814607a232b6f20f74a60c6c98497efe5e4d7b412646a6c4ae5037bba5cc24a9a355c21c00ea0d6ccc5a14f87ed60
- SSDEEP
  
  6144:ErYbUzkuvcBYC47l2xLnvhueEZdkKQ3+7Oj7hTOVA1HWZW:ErdkuveY3CvI5Zdkj6OEu1HSW
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2