c3cf3ced20d26e37e645c60533a82057bf1b98b5b8235275887f37a82909066d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c3cf3ced20d26e37e645c60533a82057bf1b98b5b8235275887f37a82909066d
Size

304KB
Sample

221206-sx99asaf42
MD5

3422f955e83268e983ab314f283f6135
SHA1

1a125b284230789ccc3cd0f4b7ac6aa70d8ee840
SHA256

c3cf3ced20d26e37e645c60533a82057bf1b98b5b8235275887f37a82909066d
SHA512

8b12b772b2341d5c30a5a5d7659e7584a130b2b4f977c8d7157e573be76d344f3afe80c715e43c725cd404182f6965cd691987028e66e0ed5c21b5973cc79637
SSDEEP

6144:OrkX6Y0JQBkQRl7174NpNUM+UHs+h43nRLFJO2t3OEhLSMwcU9P4WbXQx76:OrkX63yRl1uqM+gs+2RLTf+QLShvQx76

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c3cf3ced20d26e37e645c60533a82057bf1b98b5b8235275887f37a82909066d
- Size
  
  304KB
- MD5
  
  3422f955e83268e983ab314f283f6135
- SHA1
  
  1a125b284230789ccc3cd0f4b7ac6aa70d8ee840
- SHA256
  
  c3cf3ced20d26e37e645c60533a82057bf1b98b5b8235275887f37a82909066d
- SHA512
  
  8b12b772b2341d5c30a5a5d7659e7584a130b2b4f977c8d7157e573be76d344f3afe80c715e43c725cd404182f6965cd691987028e66e0ed5c21b5973cc79637
- SSDEEP
  
  6144:OrkX6Y0JQBkQRl7174NpNUM+UHs+h43nRLFJO2t3OEhLSMwcU9P4WbXQx76:OrkX63yRl1uqM+gs+2RLTf+QLShvQx76
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2