ec372d7a9c83a2bba2c34a1fb1c76e784688a7a661b93ba2838020d18ebec678 | Triage

Sharing

General

Target

ec372d7a9c83a2bba2c34a1fb1c76e784688a7a661b93ba2838020d18ebec678
Size

315KB
Sample

221004-hvy35sghbp
MD5

539a65096b63a547d1aacccef3fa3840
SHA1

a7bd4b4b8f7b563a1b2efeecee88113e4fb69cdb
SHA256

ec372d7a9c83a2bba2c34a1fb1c76e784688a7a661b93ba2838020d18ebec678
SHA512

5ad22a9e303c9e7d5f3be96c7b8824c5cc0c4e210aeb460dd15c8eb7877af54dd64edee59fdb60fa6472bed8d68a411c6f09829583a96bb213bcaeab680b7df0
SSDEEP

6144:RrpbUzkuvcBYC47l2xyfalkLUsx4Y0k8ojcX/pJ2enmrIJzO1LBut0njxxuQ9UZ:RrakuveY3hfaaLUsx4JkxjYJ2emrCz2K

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ec372d7a9c83a2bba2c34a1fb1c76e784688a7a661b93ba2838020d18ebec678
- Size
  
  315KB
- MD5
  
  539a65096b63a547d1aacccef3fa3840
- SHA1
  
  a7bd4b4b8f7b563a1b2efeecee88113e4fb69cdb
- SHA256
  
  ec372d7a9c83a2bba2c34a1fb1c76e784688a7a661b93ba2838020d18ebec678
- SHA512
  
  5ad22a9e303c9e7d5f3be96c7b8824c5cc0c4e210aeb460dd15c8eb7877af54dd64edee59fdb60fa6472bed8d68a411c6f09829583a96bb213bcaeab680b7df0
- SSDEEP
  
  6144:RrpbUzkuvcBYC47l2xyfalkLUsx4Y0k8ojcX/pJ2enmrIJzO1LBut0njxxuQ9UZ:RrakuveY3hfaaLUsx4JkxjYJ2emrCz2K
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2