205d7050ed3a5360321eb829822f75a91104d73b26470d43733ed287d6f5c5d4 | Triage

Sharing

General

Target

2ddc6d398950f8340829c3c6c9e877ad
Size

305KB
Sample

231225-t6p56agedk
MD5

2ddc6d398950f8340829c3c6c9e877ad
SHA1

dc5165d75dc8e99eb30afd5226314acd269469af
SHA256

205d7050ed3a5360321eb829822f75a91104d73b26470d43733ed287d6f5c5d4
SHA512

b80285a3d017a9254e814fb83fcc0c6688f9e09e93e7388a6206b3e07cceb1960e17918e0dab27dd4a1ab6271e2c029eefac2a54617432289fcce5686d9da06c
SSDEEP

6144:Yrkx9uEo2S1YnQmCX492DkwNP3qpYFkXdlP5IO5/OoCVHuy6SHZ86riVZkiizt:YrkHu6/eIo4RXdrIO5/OpVHd6Ky6riz0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2ddc6d398950f8340829c3c6c9e877ad
- Size
  
  305KB
- MD5
  
  2ddc6d398950f8340829c3c6c9e877ad
- SHA1
  
  dc5165d75dc8e99eb30afd5226314acd269469af
- SHA256
  
  205d7050ed3a5360321eb829822f75a91104d73b26470d43733ed287d6f5c5d4
- SHA512
  
  b80285a3d017a9254e814fb83fcc0c6688f9e09e93e7388a6206b3e07cceb1960e17918e0dab27dd4a1ab6271e2c029eefac2a54617432289fcce5686d9da06c
- SSDEEP
  
  6144:Yrkx9uEo2S1YnQmCX492DkwNP3qpYFkXdlP5IO5/OoCVHuy6SHZ86riVZkiizt:YrkHu6/eIo4RXdrIO5/OpVHd6Ky6riz0
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2