c79687df9c88fb184c198eb2e092e666a3cddfe43bccecb19d7626c39ff29913 | Triage

Sharing

General

Target

c79687df9c88fb184c198eb2e092e666a3cddfe43bccecb19d7626c39ff29913
Size

304KB
Sample

221127-x2dhcagb8y
MD5

b17da75848bcc3d5a7e40858e34ce947
SHA1

4670f23ebec818d7a51c38611f50f073fbce08aa
SHA256

c79687df9c88fb184c198eb2e092e666a3cddfe43bccecb19d7626c39ff29913
SHA512

0239087d9612a520661b290bfde4f35aea0d3c0c4ffbd08d50ab463c79ebfba4fe2a26c7d8b819d251bd0381f3b5f1cdc4780a8cb830be395d680bbeb66ffcba
SSDEEP

6144:drkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPb:drkuu6/eIo4tQW62T+uTwM6YVxm24b

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c79687df9c88fb184c198eb2e092e666a3cddfe43bccecb19d7626c39ff29913
- Size
  
  304KB
- MD5
  
  b17da75848bcc3d5a7e40858e34ce947
- SHA1
  
  4670f23ebec818d7a51c38611f50f073fbce08aa
- SHA256
  
  c79687df9c88fb184c198eb2e092e666a3cddfe43bccecb19d7626c39ff29913
- SHA512
  
  0239087d9612a520661b290bfde4f35aea0d3c0c4ffbd08d50ab463c79ebfba4fe2a26c7d8b819d251bd0381f3b5f1cdc4780a8cb830be395d680bbeb66ffcba
- SSDEEP
  
  6144:drkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPb:drkuu6/eIo4tQW62T+uTwM6YVxm24b
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2