3c90a837b068e18abdd37c37ce2883e30e41ce645ff9310718863017e30e8792 | Triage

Sharing

General

Target

3c90a837b068e18abdd37c37ce2883e30e41ce645ff9310718863017e30e8792
Size

3.4MB
Sample

221127-lccnzaag71
MD5

47852fc247dbf7cef243d66aa1fdd891
SHA1

64317b357391840e3ee18253c88a14bf188f3bfa
SHA256

3c90a837b068e18abdd37c37ce2883e30e41ce645ff9310718863017e30e8792
SHA512

5acdb93956ba1ed479eb6000a5b6af8647baa687b062580770ebe95d110936fb8e7b0480698077d31010bda7f6897a3d88d99b883e8b1eade50e91f000450fea
SSDEEP

98304:EPvsmEtKBen4svOzwZRwRSBqfoyRquo70:et+K4nRWkZRfwfo

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  3c90a837b068e18abdd37c37ce2883e30e41ce645ff9310718863017e30e8792
- Size
  
  3.4MB
- MD5
  
  47852fc247dbf7cef243d66aa1fdd891
- SHA1
  
  64317b357391840e3ee18253c88a14bf188f3bfa
- SHA256
  
  3c90a837b068e18abdd37c37ce2883e30e41ce645ff9310718863017e30e8792
- SHA512
  
  5acdb93956ba1ed479eb6000a5b6af8647baa687b062580770ebe95d110936fb8e7b0480698077d31010bda7f6897a3d88d99b883e8b1eade50e91f000450fea
- SSDEEP
  
  98304:EPvsmEtKBen4svOzwZRwRSBqfoyRquo70:et+K4nRWkZRfwfo
Score

8^/10

discovery persistence
- Modifies AppInit DLL entries
  persistence
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence