c4021d8090de0a225996b0e93def39a1e03af6b6151b31c7d7a60ff9cd77d83d | Triage

Sharing

General

Target

c4021d8090de0a225996b0e93def39a1e03af6b6151b31c7d7a60ff9cd77d83d
Size

312KB
Sample

221204-q3ctwadg96
MD5

2eac8b8bc2bef3f9a211dfc4254bb770
SHA1

7bd1d048581055263624349d76817dacd5e8f028
SHA256

c4021d8090de0a225996b0e93def39a1e03af6b6151b31c7d7a60ff9cd77d83d
SHA512

b9441d1b1f2fe68b494a1fdbca9e3c7c516dfc87bb3ececf7172e074d87a52bcde14174fa5e6c26ea7e3fa22c55a21a16107af1e83102a3a1de58796558d16d6
SSDEEP

6144:xrVu6Y0JQBkQRl7174NpNUM+UHs+Jk5yZ0hbJDSKxFr1u:xrVu63yRl1uqM+gs++UZ0hbJDrJ1u

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c4021d8090de0a225996b0e93def39a1e03af6b6151b31c7d7a60ff9cd77d83d
- Size
  
  312KB
- MD5
  
  2eac8b8bc2bef3f9a211dfc4254bb770
- SHA1
  
  7bd1d048581055263624349d76817dacd5e8f028
- SHA256
  
  c4021d8090de0a225996b0e93def39a1e03af6b6151b31c7d7a60ff9cd77d83d
- SHA512
  
  b9441d1b1f2fe68b494a1fdbca9e3c7c516dfc87bb3ececf7172e074d87a52bcde14174fa5e6c26ea7e3fa22c55a21a16107af1e83102a3a1de58796558d16d6
- SSDEEP
  
  6144:xrVu6Y0JQBkQRl7174NpNUM+UHs+Jk5yZ0hbJDSKxFr1u:xrVu63yRl1uqM+gs++UZ0hbJDrJ1u
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2