3b4dc1f2a92879879fc35a3abac56fedc48c1393524d20ad38d3c597db8096d8 | Triage

Sharing

General

Target

3b4dc1f2a92879879fc35a3abac56fedc48c1393524d20ad38d3c597db8096d8
Size

313KB
Sample

221123-kfsc6acd6s
MD5

e083c3c5a2aa86456a9c55c73c6289fb
SHA1

8c5f8504865d46d642398067916928ad0c9a133f
SHA256

3b4dc1f2a92879879fc35a3abac56fedc48c1393524d20ad38d3c597db8096d8
SHA512

fa124931fe862757647405b9243db5c995649d7e0e76ca65dcd2033f8d5fbdc09ac74797cc1b46736e60d4613eef516750495a2eade150b99a0d3bb5c49569b7
SSDEEP

6144:vrb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoM8:vrRu6/eIo4t3PuFITKUAn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3b4dc1f2a92879879fc35a3abac56fedc48c1393524d20ad38d3c597db8096d8
- Size
  
  313KB
- MD5
  
  e083c3c5a2aa86456a9c55c73c6289fb
- SHA1
  
  8c5f8504865d46d642398067916928ad0c9a133f
- SHA256
  
  3b4dc1f2a92879879fc35a3abac56fedc48c1393524d20ad38d3c597db8096d8
- SHA512
  
  fa124931fe862757647405b9243db5c995649d7e0e76ca65dcd2033f8d5fbdc09ac74797cc1b46736e60d4613eef516750495a2eade150b99a0d3bb5c49569b7
- SSDEEP
  
  6144:vrb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoM8:vrRu6/eIo4t3PuFITKUAn
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2