ec797de969d23b45a35fe1508b1331751db750369122132053b1301ab12c47a8 | Triage

Sharing

General

Target

ec797de969d23b45a35fe1508b1331751db750369122132053b1301ab12c47a8
Size

326KB
Sample

221029-x3274acdcr
MD5

a3a75b241a39e7cfbbca446983428390
SHA1

d5896b5246dc5739e63fceb5b124043c374e783d
SHA256

ec797de969d23b45a35fe1508b1331751db750369122132053b1301ab12c47a8
SHA512

837e7eae6f3f33ea37120b355d6ba2451f692eb6685b601ebd994a128e92c3bbbc751b780d2291230896626e6aa59fabede0ad0bb0943f1515d216d6dab2b89b
SSDEEP

6144:vr469uEo2S1YnQmCX492DkwNP3qpYFhVq5fRr7kW2hjCmPLSysJmap:vr4iu6/eIo44O0W2UY2yyp

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ec797de969d23b45a35fe1508b1331751db750369122132053b1301ab12c47a8
- Size
  
  326KB
- MD5
  
  a3a75b241a39e7cfbbca446983428390
- SHA1
  
  d5896b5246dc5739e63fceb5b124043c374e783d
- SHA256
  
  ec797de969d23b45a35fe1508b1331751db750369122132053b1301ab12c47a8
- SHA512
  
  837e7eae6f3f33ea37120b355d6ba2451f692eb6685b601ebd994a128e92c3bbbc751b780d2291230896626e6aa59fabede0ad0bb0943f1515d216d6dab2b89b
- SSDEEP
  
  6144:vr469uEo2S1YnQmCX492DkwNP3qpYFhVq5fRr7kW2hjCmPLSysJmap:vr4iu6/eIo44O0W2UY2yyp
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2