c4543239cb09bd4f616eae4c8342d024ca7a89cb346cb1ba924abd5b64491fb8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c4543239cb09bd4f616eae4c8342d024ca7a89cb346cb1ba924abd5b64491fb8
Size

304KB
Sample

221127-wenjcsfe65
MD5

3f5fa126a89a5ab4ec0981a3e182781e
SHA1

425810ca0f9943d61383e66ff0a2b80759e68c47
SHA256

c4543239cb09bd4f616eae4c8342d024ca7a89cb346cb1ba924abd5b64491fb8
SHA512

9ed2d63ff313293695ff49bdede8f09c804fc4e391d48f709fbdd9ec856c2c6c2231e360b4823f8ea52171b6bdde4b4e3b02f2aa6ad0b94e162643fdd492a0e1
SSDEEP

6144:1rkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPk:1rkuu6/eIo4tQW62T+uTwM6YVxm24k

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c4543239cb09bd4f616eae4c8342d024ca7a89cb346cb1ba924abd5b64491fb8
- Size
  
  304KB
- MD5
  
  3f5fa126a89a5ab4ec0981a3e182781e
- SHA1
  
  425810ca0f9943d61383e66ff0a2b80759e68c47
- SHA256
  
  c4543239cb09bd4f616eae4c8342d024ca7a89cb346cb1ba924abd5b64491fb8
- SHA512
  
  9ed2d63ff313293695ff49bdede8f09c804fc4e391d48f709fbdd9ec856c2c6c2231e360b4823f8ea52171b6bdde4b4e3b02f2aa6ad0b94e162643fdd492a0e1
- SSDEEP
  
  6144:1rkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPk:1rkuu6/eIo4tQW62T+uTwM6YVxm24k
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2