3bcd9ea2f4e1f920eb83a9b4668e54a7496542371e226251e5bfb72c437eeed5 | Triage

Sharing

General

Target

3bcd9ea2f4e1f920eb83a9b4668e54a7496542371e226251e5bfb72c437eeed5
Size

314KB
Sample

221123-kfqvbscd51
MD5

be9d6b5abe9afb649bcef1c5e67e4257
SHA1

e1909a1526046a4f577605b8c8c94bcd0089910a
SHA256

3bcd9ea2f4e1f920eb83a9b4668e54a7496542371e226251e5bfb72c437eeed5
SHA512

79eb05fc681a2f6dac61599ecf5fab6da94cfc64f38b3043e3d10d37646e8defebd21175da5a60551d8f4a02d7a06c8547df5330a0daa5a2f2c2f64f21cd1547
SSDEEP

6144:ArAbUzkuvcBYC47l2xn88NEymFTYO67qzVxzRRwgX:Ar1kuveY35YO67Wxz7wgX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3bcd9ea2f4e1f920eb83a9b4668e54a7496542371e226251e5bfb72c437eeed5
- Size
  
  314KB
- MD5
  
  be9d6b5abe9afb649bcef1c5e67e4257
- SHA1
  
  e1909a1526046a4f577605b8c8c94bcd0089910a
- SHA256
  
  3bcd9ea2f4e1f920eb83a9b4668e54a7496542371e226251e5bfb72c437eeed5
- SHA512
  
  79eb05fc681a2f6dac61599ecf5fab6da94cfc64f38b3043e3d10d37646e8defebd21175da5a60551d8f4a02d7a06c8547df5330a0daa5a2f2c2f64f21cd1547
- SSDEEP
  
  6144:ArAbUzkuvcBYC47l2xn88NEymFTYO67qzVxzRRwgX:Ar1kuveY35YO67Wxz7wgX
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2