c87f4c08bcfcbc5dd8b0629193e819b51dca8e317e2c9de6e58817eef12187c1 | Triage

Sharing

General

Target

c87f4c08bcfcbc5dd8b0629193e819b51dca8e317e2c9de6e58817eef12187c1
Size

304KB
Sample

221123-kwef8sda7w
MD5

37a68b60f0ed1a7f9ba5bf1ead3e01a9
SHA1

b9e14e9a1116a89092980f2c04d8c7830899bc53
SHA256

c87f4c08bcfcbc5dd8b0629193e819b51dca8e317e2c9de6e58817eef12187c1
SHA512

907a52df0c7a9e05956f0610b228d03c78691737744a1fae9ded6edca4f3fc93fb1eca573926faf007889e4d242927aaa3e3d7d4df1cfd781cb6e40f35d78c77
SSDEEP

6144:NrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPC:Nrkuu6/eIo4tQW62T+uTwM6YVxm24C

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c87f4c08bcfcbc5dd8b0629193e819b51dca8e317e2c9de6e58817eef12187c1
- Size
  
  304KB
- MD5
  
  37a68b60f0ed1a7f9ba5bf1ead3e01a9
- SHA1
  
  b9e14e9a1116a89092980f2c04d8c7830899bc53
- SHA256
  
  c87f4c08bcfcbc5dd8b0629193e819b51dca8e317e2c9de6e58817eef12187c1
- SHA512
  
  907a52df0c7a9e05956f0610b228d03c78691737744a1fae9ded6edca4f3fc93fb1eca573926faf007889e4d242927aaa3e3d7d4df1cfd781cb6e40f35d78c77
- SSDEEP
  
  6144:NrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPC:Nrkuu6/eIo4tQW62T+uTwM6YVxm24C
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2