ebff9f1991b03023deb1be8bb11cec5ecc62758f79407b82baf13d41497becba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ebff9f1991b03023deb1be8bb11cec5ecc62758f79407b82baf13d41497becba
Size

64KB
Sample

221019-qs1g7aadek
MD5

82df028df4fdb6888a5caefc1cea1c94
SHA1

e47579012cb58dd2c8548ed0c8b4da005b7b8fed
SHA256

ebff9f1991b03023deb1be8bb11cec5ecc62758f79407b82baf13d41497becba
SHA512

0c76d703956d065fc885254718f839c0e7dcfc385e519c1e4da2dc6da48342d6b22a8536ed0003ea2ceca733a680316412fed3349fb2e5535aca6050407da94b
SSDEEP

768:M3T0iZ7ZmGDbhxUeMQQigRUttp55ovopVWwI9k1l9hRvhGXo:M3T0i5gd8v5jp8wI9g/REX

Score

7^/10

Malware Config

Targets

- Target
  
  ebff9f1991b03023deb1be8bb11cec5ecc62758f79407b82baf13d41497becba
- Size
  
  64KB
- MD5
  
  82df028df4fdb6888a5caefc1cea1c94
- SHA1
  
  e47579012cb58dd2c8548ed0c8b4da005b7b8fed
- SHA256
  
  ebff9f1991b03023deb1be8bb11cec5ecc62758f79407b82baf13d41497becba
- SHA512
  
  0c76d703956d065fc885254718f839c0e7dcfc385e519c1e4da2dc6da48342d6b22a8536ed0003ea2ceca733a680316412fed3349fb2e5535aca6050407da94b
- SSDEEP
  
  768:M3T0iZ7ZmGDbhxUeMQQigRUttp55ovopVWwI9k1l9hRvhGXo:M3T0i5gd8v5jp8wI9g/REX
Score

7^/10
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2