c25b8592d893a68650c1d63253fd81d72c88e526186b6de261d3486354125f56 | Triage

Sharing

General

Target

c25b8592d893a68650c1d63253fd81d72c88e526186b6de261d3486354125f56
Size

313KB
Sample

221127-3r2p3sch9z
MD5

3de74ceaeb0163a6c13abcc220c18d3c
SHA1

606f1cf218d0edbee16e4ffedf9a2468522383b1
SHA256

c25b8592d893a68650c1d63253fd81d72c88e526186b6de261d3486354125f56
SHA512

b24fdc5897c27179830d2929e8f36e3336d5e83edc0a688205ce64bf2781ed141f02289bf1425dc4cee1372d3c1b6b23c6b0ac8154e75dbf23eafee48ac2b96b
SSDEEP

6144:trK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0Lr2:tryu6/eIo4vMResyEf0uP9d9UG0a

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c25b8592d893a68650c1d63253fd81d72c88e526186b6de261d3486354125f56
- Size
  
  313KB
- MD5
  
  3de74ceaeb0163a6c13abcc220c18d3c
- SHA1
  
  606f1cf218d0edbee16e4ffedf9a2468522383b1
- SHA256
  
  c25b8592d893a68650c1d63253fd81d72c88e526186b6de261d3486354125f56
- SHA512
  
  b24fdc5897c27179830d2929e8f36e3336d5e83edc0a688205ce64bf2781ed141f02289bf1425dc4cee1372d3c1b6b23c6b0ac8154e75dbf23eafee48ac2b96b
- SSDEEP
  
  6144:trK9uEo2S1YnQmCX492DkwNP3qpYFtcM7dZssr+Ixf6LuDTKD2ay9KGYG0Lr2:tryu6/eIo4vMResyEf0uP9d9UG0a
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2