6cfcaab75bae2eeef085c4270010b0944befa1919e237e4bac597ca412315285 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6cfcaab75bae2eeef085c4270010b0944befa1919e237e4bac597ca412315285
Size

325KB
Sample

221125-zch3msdd73
MD5

98cdc3a364bef40f4294f6c9878e1f7a
SHA1

87e6b87233281792676cab1ada411cd65bc064c0
SHA256

6cfcaab75bae2eeef085c4270010b0944befa1919e237e4bac597ca412315285
SHA512

570b48cecd494270f8d868cece6edbf1f6784c2b1f125e85cf6b865e6f8217ffb20eede7f79a33590c5827ccad58f341bf2592f6adb6c902b7c5b3fa7db0955a
SSDEEP

6144:Qr1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5of:Qr1B3u6/eIo4ArVUBQCCYOqmO5of

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6cfcaab75bae2eeef085c4270010b0944befa1919e237e4bac597ca412315285
- Size
  
  325KB
- MD5
  
  98cdc3a364bef40f4294f6c9878e1f7a
- SHA1
  
  87e6b87233281792676cab1ada411cd65bc064c0
- SHA256
  
  6cfcaab75bae2eeef085c4270010b0944befa1919e237e4bac597ca412315285
- SHA512
  
  570b48cecd494270f8d868cece6edbf1f6784c2b1f125e85cf6b865e6f8217ffb20eede7f79a33590c5827ccad58f341bf2592f6adb6c902b7c5b3fa7db0955a
- SSDEEP
  
  6144:Qr1Bh9uEo2S1YnQmCX492DkwNP3qpYFDcYgQUskKWeFCEQOiCYOqmO5of:Qr1B3u6/eIo4ArVUBQCCYOqmO5of
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2