3cd1e33ad1a33c8bae4c5e2d2241d01f6ae04a8c57b989fbb2d7d242c4e51d90 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3cd1e33ad1a33c8bae4c5e2d2241d01f6ae04a8c57b989fbb2d7d242c4e51d90
Size

3.2MB
Sample

221127-fpqhpseh8x
MD5

a60b379726432e43efc9336ba3367ac8
SHA1

88db10447eaaa480ebba78d3efbce903b847bd13
SHA256

3cd1e33ad1a33c8bae4c5e2d2241d01f6ae04a8c57b989fbb2d7d242c4e51d90
SHA512

2505e0db62e18e149928c6e1de53ba1f53aba3af7ec3a489ac8853b994dac30c67e9f0a12e6de4f5910c40cc181f1963fc1022916e559c61208b182ce1a2b398
SSDEEP

98304:CXhR2R5ClU08W3cflTudeoiBT0OlYGwP6:g8R5ClUvW30lqxiV0Olu6

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  3cd1e33ad1a33c8bae4c5e2d2241d01f6ae04a8c57b989fbb2d7d242c4e51d90
- Size
  
  3.2MB
- MD5
  
  a60b379726432e43efc9336ba3367ac8
- SHA1
  
  88db10447eaaa480ebba78d3efbce903b847bd13
- SHA256
  
  3cd1e33ad1a33c8bae4c5e2d2241d01f6ae04a8c57b989fbb2d7d242c4e51d90
- SHA512
  
  2505e0db62e18e149928c6e1de53ba1f53aba3af7ec3a489ac8853b994dac30c67e9f0a12e6de4f5910c40cc181f1963fc1022916e559c61208b182ce1a2b398
- SSDEEP
  
  98304:CXhR2R5ClU08W3cflTudeoiBT0OlYGwP6:g8R5ClUvW30lqxiV0Olu6
Score

8^/10

discovery persistence
- Modifies AppInit DLL entries
  persistence
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence