ce81824b6dd0daef104c612b073135f9cb0b023f738a9972f31ce4a370407b4f | Triage

Sharing

General

Target

ce81824b6dd0daef104c612b073135f9cb0b023f738a9972f31ce4a370407b4f
Size

313KB
Sample

221127-gm9dgahc6y
MD5

0665cb1d3b4629ba4e4998ba87a671df
SHA1

738875e376c0c5c62574d33b662dcabe51effc81
SHA256

ce81824b6dd0daef104c612b073135f9cb0b023f738a9972f31ce4a370407b4f
SHA512

af73dba7107caa755dcab1ebcec1821e14a42500b971d5eaf3c8decd6f8725eed157b3d84a3cb284af106f2d6d5933c4f532b2b7e2cbce4516305af63c2a34c6
SSDEEP

6144:IrJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDT:Irfu6/eIo4jVW5soVCcQovoO0DJM+EA7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ce81824b6dd0daef104c612b073135f9cb0b023f738a9972f31ce4a370407b4f
- Size
  
  313KB
- MD5
  
  0665cb1d3b4629ba4e4998ba87a671df
- SHA1
  
  738875e376c0c5c62574d33b662dcabe51effc81
- SHA256
  
  ce81824b6dd0daef104c612b073135f9cb0b023f738a9972f31ce4a370407b4f
- SHA512
  
  af73dba7107caa755dcab1ebcec1821e14a42500b971d5eaf3c8decd6f8725eed157b3d84a3cb284af106f2d6d5933c4f532b2b7e2cbce4516305af63c2a34c6
- SSDEEP
  
  6144:IrJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDT:Irfu6/eIo4jVW5soVCcQovoO0DJM+EA7
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2