c537dfcb7c8e90e6e131f4036c2da200f0a8b834f4f20329c2935511288669c3 | Triage

Sharing

General

Target

c537dfcb7c8e90e6e131f4036c2da200f0a8b834f4f20329c2935511288669c3
Size

313KB
Sample

221124-n12n4sbh63
MD5

a89d4c07ec1409c6219ba617cf9aa604
SHA1

7055be43336657c129a4a2fe2853cbed61077519
SHA256

c537dfcb7c8e90e6e131f4036c2da200f0a8b834f4f20329c2935511288669c3
SHA512

535d6b3ae79cf47e1208d7c22040e6928f11604a7efe87ab86339692bc30ff732464b939cbf5b00807ac67a638e8cbf67be90303ea81682bebe5a5a0eb690a06
SSDEEP

6144:HrK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0L8:Hryu6/eIo4vMResyEf0uP9d9UG08

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c537dfcb7c8e90e6e131f4036c2da200f0a8b834f4f20329c2935511288669c3
- Size
  
  313KB
- MD5
  
  a89d4c07ec1409c6219ba617cf9aa604
- SHA1
  
  7055be43336657c129a4a2fe2853cbed61077519
- SHA256
  
  c537dfcb7c8e90e6e131f4036c2da200f0a8b834f4f20329c2935511288669c3
- SHA512
  
  535d6b3ae79cf47e1208d7c22040e6928f11604a7efe87ab86339692bc30ff732464b939cbf5b00807ac67a638e8cbf67be90303ea81682bebe5a5a0eb690a06
- SSDEEP
  
  6144:HrK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0L8:Hryu6/eIo4vMResyEf0uP9d9UG08
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2