2c6e6d06005c1063cb43f585c65f943028d53958142172e7f40bd4b2e368e6ad | Triage

Sharing

General

Target

2c6e6d06005c1063cb43f585c65f943028d53958142172e7f40bd4b2e368e6ad
Size

312KB
Sample

221123-kjmbbace7s
MD5

bda588e4f03d48190b6b4c3ab7c86759
SHA1

e9f18a70ab1c77a4e20948982262b4533a0c2e78
SHA256

2c6e6d06005c1063cb43f585c65f943028d53958142172e7f40bd4b2e368e6ad
SHA512

60038a1baf5a7be3479e1f78671e6b180b5d51c1183181da43a7fbac3d8953e83a95b582e3c3d9fd3a94c176c78b4ab006cbf2cdcd8e0c1189af091a9b18714a
SSDEEP

6144:srJ9uEo2S1YnQmCX492DkwNP3qpYFkwlWKM23DpJQ+JXUOy1Lr3Dv1A+CiyGdUzI:srfu6/eIo4XwlWKM231t5UnRr3DdRp5R

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2c6e6d06005c1063cb43f585c65f943028d53958142172e7f40bd4b2e368e6ad
- Size
  
  312KB
- MD5
  
  bda588e4f03d48190b6b4c3ab7c86759
- SHA1
  
  e9f18a70ab1c77a4e20948982262b4533a0c2e78
- SHA256
  
  2c6e6d06005c1063cb43f585c65f943028d53958142172e7f40bd4b2e368e6ad
- SHA512
  
  60038a1baf5a7be3479e1f78671e6b180b5d51c1183181da43a7fbac3d8953e83a95b582e3c3d9fd3a94c176c78b4ab006cbf2cdcd8e0c1189af091a9b18714a
- SSDEEP
  
  6144:srJ9uEo2S1YnQmCX492DkwNP3qpYFkwlWKM23DpJQ+JXUOy1Lr3Dv1A+CiyGdUzI:srfu6/eIo4XwlWKM231t5UnRr3DdRp5R
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2