0c7749a0d2f9d91a3284f5030f9ea5c9cfff8408dcf12bba95939514d5dbd331 | Triage

Sharing

General

Target

0c7749a0d2f9d91a3284f5030f9ea5c9cfff8408dcf12bba95939514d5dbd331
Size

316KB
Sample

221123-kqpp1scg9x
MD5

cfb7e2f8584e9bdf6857dbf4499a98bf
SHA1

a0d5caee96522b40e7fe4e6a2785bfc12124108d
SHA256

0c7749a0d2f9d91a3284f5030f9ea5c9cfff8408dcf12bba95939514d5dbd331
SHA512

a2b4d16d309801cda6513263c6162189995591ed4723a6a30104cc010bc845a8e711c6da5c5a030f385538cef9d89486970d9142625b2164ff437cf05466194b
SSDEEP

6144:yribUzkuvcBYC47l2xLNaFmoKZLxtHU/TMDkW01eedmQb+xv:yr7kuveY33FJUo7MDkA6e

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0c7749a0d2f9d91a3284f5030f9ea5c9cfff8408dcf12bba95939514d5dbd331
- Size
  
  316KB
- MD5
  
  cfb7e2f8584e9bdf6857dbf4499a98bf
- SHA1
  
  a0d5caee96522b40e7fe4e6a2785bfc12124108d
- SHA256
  
  0c7749a0d2f9d91a3284f5030f9ea5c9cfff8408dcf12bba95939514d5dbd331
- SHA512
  
  a2b4d16d309801cda6513263c6162189995591ed4723a6a30104cc010bc845a8e711c6da5c5a030f385538cef9d89486970d9142625b2164ff437cf05466194b
- SSDEEP
  
  6144:yribUzkuvcBYC47l2xLNaFmoKZLxtHU/TMDkW01eedmQb+xv:yr7kuveY33FJUo7MDkA6e
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2