cdcef3541d7d27adef4f1fcbca8b40a91d0b3db45cdaa44d985ccb57ad40f51c | Triage

Sharing

General

Target

cdcef3541d7d27adef4f1fcbca8b40a91d0b3db45cdaa44d985ccb57ad40f51c
Size

316KB
Sample

221124-ncffzadd61
MD5

1d28e3a0aa0a74a4e6768c9077a2df49
SHA1

ba7bd8aeda33ebe1b707699f3cf2af8d86cbebca
SHA256

cdcef3541d7d27adef4f1fcbca8b40a91d0b3db45cdaa44d985ccb57ad40f51c
SHA512

5e3d5b33a1198fff0915310afa7d3228b8da750895a48a36e458242c5641578a0c7ca7ca38698cd5d659cd8641bef1cb410a01a31f584d2b8ea8cbd98079f218
SSDEEP

6144:lrJbUzkuvcBYC47l2xuNfL2pAgWriSTb3Z9xuzSCR2bSu:lr6kuveY3TT2XdGp9xRC4bSu

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  cdcef3541d7d27adef4f1fcbca8b40a91d0b3db45cdaa44d985ccb57ad40f51c
- Size
  
  316KB
- MD5
  
  1d28e3a0aa0a74a4e6768c9077a2df49
- SHA1
  
  ba7bd8aeda33ebe1b707699f3cf2af8d86cbebca
- SHA256
  
  cdcef3541d7d27adef4f1fcbca8b40a91d0b3db45cdaa44d985ccb57ad40f51c
- SHA512
  
  5e3d5b33a1198fff0915310afa7d3228b8da750895a48a36e458242c5641578a0c7ca7ca38698cd5d659cd8641bef1cb410a01a31f584d2b8ea8cbd98079f218
- SSDEEP
  
  6144:lrJbUzkuvcBYC47l2xuNfL2pAgWriSTb3Z9xuzSCR2bSu:lr6kuveY3TT2XdGp9xRC4bSu
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2