ea8c1d586a46382aaeb9e0d6b7c972385d8171495d406e7d270fc485fc48bae0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ea8c1d586a46382aaeb9e0d6b7c972385d8171495d406e7d270fc485fc48bae0
Size

32KB
Sample

221020-14259sgfgp
MD5

5b14603a95aa8222b319c0a14b774950
SHA1

1185f0e557f09ac11a49d5e2b2b8db6b49cb1c8f
SHA256

ea8c1d586a46382aaeb9e0d6b7c972385d8171495d406e7d270fc485fc48bae0
SHA512

eb413559bd629c22272393c8f11603ce5cb9bfff317a4d9071b02f6c6bde94f38cbd642d74f4dadce21cea963d18de0a3b3f5aeb2aabdb06051b90b70b9d2a42
SSDEEP

768:LdMAYd+aoGhjE/oqR49XZhsn77EivK9Oh:L6AYd0RVvK9

Score

7^/10

Malware Config

Targets

- Target
  
  ea8c1d586a46382aaeb9e0d6b7c972385d8171495d406e7d270fc485fc48bae0
- Size
  
  32KB
- MD5
  
  5b14603a95aa8222b319c0a14b774950
- SHA1
  
  1185f0e557f09ac11a49d5e2b2b8db6b49cb1c8f
- SHA256
  
  ea8c1d586a46382aaeb9e0d6b7c972385d8171495d406e7d270fc485fc48bae0
- SHA512
  
  eb413559bd629c22272393c8f11603ce5cb9bfff317a4d9071b02f6c6bde94f38cbd642d74f4dadce21cea963d18de0a3b3f5aeb2aabdb06051b90b70b9d2a42
- SSDEEP
  
  768:LdMAYd+aoGhjE/oqR49XZhsn77EivK9Oh:L6AYd0RVvK9
Score

7^/10
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2