e4ee61127cf898cc75cab5b0cabdca8fa02e6c767402688727a59c5a8d138270 | Triage

Sharing

General

Target

e4ee61127cf898cc75cab5b0cabdca8fa02e6c767402688727a59c5a8d138270
Size

316KB
Sample

221123-h1392seg36
MD5

ea7f6cdf481c197b311f0404ec5f25a1
SHA1

6c4c2046d393ededc801db7ea3b6a9194e580887
SHA256

e4ee61127cf898cc75cab5b0cabdca8fa02e6c767402688727a59c5a8d138270
SHA512

012a0c3b36060ca3edf0543a570f19c70a286c7b2a1caba8bf6b0b82bb1274d85ca2d19ec0d0f1dd2e8758519e2b8f29fc04d0985db4512b4183ab26844725dd
SSDEEP

6144:prvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVw:prkkuveY3zhlV6tmDxzwVw

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e4ee61127cf898cc75cab5b0cabdca8fa02e6c767402688727a59c5a8d138270
- Size
  
  316KB
- MD5
  
  ea7f6cdf481c197b311f0404ec5f25a1
- SHA1
  
  6c4c2046d393ededc801db7ea3b6a9194e580887
- SHA256
  
  e4ee61127cf898cc75cab5b0cabdca8fa02e6c767402688727a59c5a8d138270
- SHA512
  
  012a0c3b36060ca3edf0543a570f19c70a286c7b2a1caba8bf6b0b82bb1274d85ca2d19ec0d0f1dd2e8758519e2b8f29fc04d0985db4512b4183ab26844725dd
- SSDEEP
  
  6144:prvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVw:prkkuveY3zhlV6tmDxzwVw
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2