cef91ab9d4b5f56dd8f33827950a101f47a07491844555925ccb817e899b33de | Triage

Sharing

General

Target

cef91ab9d4b5f56dd8f33827950a101f47a07491844555925ccb817e899b33de
Size

312KB
Sample

221206-swagaaad86
MD5

f8dc1aa6a39fa4ef92ea8cee0d6d6367
SHA1

05d9d9af94d9d9baba1827fc31139407f36a0bcf
SHA256

cef91ab9d4b5f56dd8f33827950a101f47a07491844555925ccb817e899b33de
SHA512

0d2d09ab4c3399710757c6a0f59ed79ab5a26ccd28dc087a0eb0128412dd342bb53a1d10534f82eacd6995f97bebea83bf001943602c14a81c7b913868cfe986
SSDEEP

6144:urV99uEo2S1YnQmCX492DkwNP3qpYFlxE6ACgAUU0N9/MHlaB+Okgo:urVDu6/eIo4edxgA4HMHlEo

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  cef91ab9d4b5f56dd8f33827950a101f47a07491844555925ccb817e899b33de
- Size
  
  312KB
- MD5
  
  f8dc1aa6a39fa4ef92ea8cee0d6d6367
- SHA1
  
  05d9d9af94d9d9baba1827fc31139407f36a0bcf
- SHA256
  
  cef91ab9d4b5f56dd8f33827950a101f47a07491844555925ccb817e899b33de
- SHA512
  
  0d2d09ab4c3399710757c6a0f59ed79ab5a26ccd28dc087a0eb0128412dd342bb53a1d10534f82eacd6995f97bebea83bf001943602c14a81c7b913868cfe986
- SSDEEP
  
  6144:urV99uEo2S1YnQmCX492DkwNP3qpYFlxE6ACgAUU0N9/MHlaB+Okgo:urVDu6/eIo4edxgA4HMHlEo
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2