cfcbed07e8ed5de9acaeb75631fc49cd771544eaddbe09d4754f0824ce375edd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cfcbed07e8ed5de9acaeb75631fc49cd771544eaddbe09d4754f0824ce375edd
Size

313KB
Sample

221125-y24vzafd51
MD5

a441bd99932c0bbe18242fb8cdf8bdf4
SHA1

e8e2a84eaea3d67068996b2de3dbad1e71737a53
SHA256

cfcbed07e8ed5de9acaeb75631fc49cd771544eaddbe09d4754f0824ce375edd
SHA512

d733b6f4c89fbfa7e0f67c257cc8a27dfd36e3aa3b66db86ebbdf35b05ba3e05fca6049e7ed3cf7cad063ad9e2ad9a11c295adc05011a53b93fcb2180904139c
SSDEEP

6144:wrJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDf:wrfu6/eIo4jVW5soVCcQovoO0DJM+EM

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  cfcbed07e8ed5de9acaeb75631fc49cd771544eaddbe09d4754f0824ce375edd
- Size
  
  313KB
- MD5
  
  a441bd99932c0bbe18242fb8cdf8bdf4
- SHA1
  
  e8e2a84eaea3d67068996b2de3dbad1e71737a53
- SHA256
  
  cfcbed07e8ed5de9acaeb75631fc49cd771544eaddbe09d4754f0824ce375edd
- SHA512
  
  d733b6f4c89fbfa7e0f67c257cc8a27dfd36e3aa3b66db86ebbdf35b05ba3e05fca6049e7ed3cf7cad063ad9e2ad9a11c295adc05011a53b93fcb2180904139c
- SSDEEP
  
  6144:wrJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDf:wrfu6/eIo4jVW5soVCcQovoO0DJM+EM
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2