4cd0dbca29b3ffdafb4b855706c4f7ec17c166056557ad0af77eb6873bbe12c2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4cd0dbca29b3ffdafb4b855706c4f7ec17c166056557ad0af77eb6873bbe12c2
Size

313KB
Sample

221128-akg3waee3w
MD5

e1c1947be9c7e99147aae52ce9f86c71
SHA1

707b48778f52266f0a4e67b79fa355247811660a
SHA256

4cd0dbca29b3ffdafb4b855706c4f7ec17c166056557ad0af77eb6873bbe12c2
SHA512

c415c04b913995b2ba92c42b707a898eccbdd59acc4f0e8a2fdb57d7f3efcc77cc027fa0d4f65f6cdba7f0a107a35a9b97470ea7ba3d5098d0d3bfbde02b40fb
SSDEEP

6144:4rJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDL:4rfu6/eIo4jVW5soVCcQovoO0DJM+EI

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4cd0dbca29b3ffdafb4b855706c4f7ec17c166056557ad0af77eb6873bbe12c2
- Size
  
  313KB
- MD5
  
  e1c1947be9c7e99147aae52ce9f86c71
- SHA1
  
  707b48778f52266f0a4e67b79fa355247811660a
- SHA256
  
  4cd0dbca29b3ffdafb4b855706c4f7ec17c166056557ad0af77eb6873bbe12c2
- SHA512
  
  c415c04b913995b2ba92c42b707a898eccbdd59acc4f0e8a2fdb57d7f3efcc77cc027fa0d4f65f6cdba7f0a107a35a9b97470ea7ba3d5098d0d3bfbde02b40fb
- SSDEEP
  
  6144:4rJ9uEo2S1YnQmCX492DkwNP3qpYFQiY0Z56GICaNRCVEumbcF6ov5d889PgLVDL:4rfu6/eIo4jVW5soVCcQovoO0DJM+EI
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2