f66cce75057b8b516e1d2aa0a24f32361cdf7494ace1a6622fc96c54db38b5e2 | Triage

Sharing

General

Target

f66cce75057b8b516e1d2aa0a24f32361cdf7494ace1a6622fc96c54db38b5e2
Size

1.8MB
Sample

241006-e2j11sselj
MD5

2f91a52ce172b10c730387788b06358d
SHA1

e22f66c120f19156cd143b35b565ad5956ae6013
SHA256

f66cce75057b8b516e1d2aa0a24f32361cdf7494ace1a6622fc96c54db38b5e2
SHA512

0bd96b3af646bbec0429a6747b96fa6e28f66477b0a7c40af4a7f2ecdc7ccac5681ca3300cb10d7e66cb62a3a3fd88b963660388a262868b38f30acace5e2eca
SSDEEP

24576:04nXubIQGyxbPV0db26WoJVEuvsv1Et9uGpckT52zedlq89Ws5uIzk5aM/phdO:0qe3f6S9SffPMWrQ0Zk

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  f66cce75057b8b516e1d2aa0a24f32361cdf7494ace1a6622fc96c54db38b5e2
- Size
  
  1.8MB
- MD5
  
  2f91a52ce172b10c730387788b06358d
- SHA1
  
  e22f66c120f19156cd143b35b565ad5956ae6013
- SHA256
  
  f66cce75057b8b516e1d2aa0a24f32361cdf7494ace1a6622fc96c54db38b5e2
- SHA512
  
  0bd96b3af646bbec0429a6747b96fa6e28f66477b0a7c40af4a7f2ecdc7ccac5681ca3300cb10d7e66cb62a3a3fd88b963660388a262868b38f30acace5e2eca
- SSDEEP
  
  24576:04nXubIQGyxbPV0db26WoJVEuvsv1Et9uGpckT52zedlq89Ws5uIzk5aM/phdO:0qe3f6S9SffPMWrQ0Zk
Score

8^/10

discovery
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2