eec8ab3d34b0e4ade4435f830df4970b91886af5c9f14616268f96c660c20841 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eec8ab3d34b0e4ade4435f830df4970b91886af5c9f14616268f96c660c20841
Size

314KB
Sample

221021-dnqqzahfej
MD5

71d90eb7cf0c3f488a6f1a2650ebc200
SHA1

e0f1ee9040df35888fc5ca5e04324755d0b4545a
SHA256

eec8ab3d34b0e4ade4435f830df4970b91886af5c9f14616268f96c660c20841
SHA512

307d7796a8ff67ed109ff21f82f1e7e587349d8b1fbfd6031e73fb139eff25e5bde72500adc8d8c7272e8c29e102a7a9eff17e8c00ef0df6a9caa4026de18a1c
SSDEEP

6144:orAbUzkuvcBYC47l2xn88NEymFTYO67qzVxzRRwS:or1kuveY35YO67Wxz7wS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  eec8ab3d34b0e4ade4435f830df4970b91886af5c9f14616268f96c660c20841
- Size
  
  314KB
- MD5
  
  71d90eb7cf0c3f488a6f1a2650ebc200
- SHA1
  
  e0f1ee9040df35888fc5ca5e04324755d0b4545a
- SHA256
  
  eec8ab3d34b0e4ade4435f830df4970b91886af5c9f14616268f96c660c20841
- SHA512
  
  307d7796a8ff67ed109ff21f82f1e7e587349d8b1fbfd6031e73fb139eff25e5bde72500adc8d8c7272e8c29e102a7a9eff17e8c00ef0df6a9caa4026de18a1c
- SSDEEP
  
  6144:orAbUzkuvcBYC47l2xn88NEymFTYO67qzVxzRRwS:or1kuveY35YO67Wxz7wS
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2