fdf9bb5f8476bc9f516a993e76c85eee338756d84bbf8e0782c8e3c62fd3a19a | Triage

Sharing

General

Target

fdf9bb5f8476bc9f516a993e76c85eee338756d84bbf8e0782c8e3c62fd3a19a
Size

312KB
Sample

221127-3cacaabf91
MD5

4c5b39590bd14beeac9610fa37dfd380
SHA1

59da85fbec9d040f604ee9dac7f0c5155ad50503
SHA256

fdf9bb5f8476bc9f516a993e76c85eee338756d84bbf8e0782c8e3c62fd3a19a
SHA512

cd8e32bebb2f92ea8a8408c6e7488b86221428a7b560811584df8eb7e15d2c2fc5328763afe39932ddcd6dbd638de587f309d87466a8cb35a062d6a44a52f9a8
SSDEEP

6144:urb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoM0U:urRu6/eIo4t3PuFITKUAM

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fdf9bb5f8476bc9f516a993e76c85eee338756d84bbf8e0782c8e3c62fd3a19a
- Size
  
  312KB
- MD5
  
  4c5b39590bd14beeac9610fa37dfd380
- SHA1
  
  59da85fbec9d040f604ee9dac7f0c5155ad50503
- SHA256
  
  fdf9bb5f8476bc9f516a993e76c85eee338756d84bbf8e0782c8e3c62fd3a19a
- SHA512
  
  cd8e32bebb2f92ea8a8408c6e7488b86221428a7b560811584df8eb7e15d2c2fc5328763afe39932ddcd6dbd638de587f309d87466a8cb35a062d6a44a52f9a8
- SSDEEP
  
  6144:urb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoM0U:urRu6/eIo4t3PuFITKUAM
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2