cb42fb447c39a0ceb8f8f92d775991671530a995a75b8de1ac58842454943c99 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cb42fb447c39a0ceb8f8f92d775991671530a995a75b8de1ac58842454943c99
Size

313KB
Sample

221127-j1jfbafc5v
MD5

b725c39436c5b51279e3dd7c1bb362ab
SHA1

543eb2141b0ffa0cfe3c2c126e8f05695de8beb8
SHA256

cb42fb447c39a0ceb8f8f92d775991671530a995a75b8de1ac58842454943c99
SHA512

2d7a95d222b6758d6c51a1263636227d13abbadea0d42fe3b1ec45d240555da3588c115f32b8ae82e0336553c4d465c505ec8002c82a12f2d419c86888d2d296
SSDEEP

6144:6rkP9uEo2S1YnQmCX492DkwNP3qpYFpdteedaMtBxOWUevASojincBSC:6rkFu6/eIo4mdt2M/lUevAzicB

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  cb42fb447c39a0ceb8f8f92d775991671530a995a75b8de1ac58842454943c99
- Size
  
  313KB
- MD5
  
  b725c39436c5b51279e3dd7c1bb362ab
- SHA1
  
  543eb2141b0ffa0cfe3c2c126e8f05695de8beb8
- SHA256
  
  cb42fb447c39a0ceb8f8f92d775991671530a995a75b8de1ac58842454943c99
- SHA512
  
  2d7a95d222b6758d6c51a1263636227d13abbadea0d42fe3b1ec45d240555da3588c115f32b8ae82e0336553c4d465c505ec8002c82a12f2d419c86888d2d296
- SSDEEP
  
  6144:6rkP9uEo2S1YnQmCX492DkwNP3qpYFpdteedaMtBxOWUevASojincBSC:6rkFu6/eIo4mdt2M/lUevAzicB
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2