ee6ea8bd77b61f836d595d607cd9df29e3cf62654a46168ed6df5554ca0ed2d7 | Triage

Sharing

General

Target

ee6ea8bd77b61f836d595d607cd9df29e3cf62654a46168ed6df5554ca0ed2d7
Size

312KB
Sample

221123-hw4p1saa5t
MD5

f365a7628e9097c76b025125c9058796
SHA1

4de26ac27cdf6ba2f25fd27ee1042735b8033d9c
SHA256

ee6ea8bd77b61f836d595d607cd9df29e3cf62654a46168ed6df5554ca0ed2d7
SHA512

4b5301afb2621b15d3327f12bc334ae8a3d773a70562084f497e7b6c2eb42cdab6c5af843792f43a96327112586445262f8de101cac376d9d233718025c9c6f8
SSDEEP

6144:wrkS9uEo2S1YnQmCX492DkwNP3qpYFK3WSsmbjbqKcs3wP8pXAN7izY:wrkau6/eIo43ts7KcXgXAN7is

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ee6ea8bd77b61f836d595d607cd9df29e3cf62654a46168ed6df5554ca0ed2d7
- Size
  
  312KB
- MD5
  
  f365a7628e9097c76b025125c9058796
- SHA1
  
  4de26ac27cdf6ba2f25fd27ee1042735b8033d9c
- SHA256
  
  ee6ea8bd77b61f836d595d607cd9df29e3cf62654a46168ed6df5554ca0ed2d7
- SHA512
  
  4b5301afb2621b15d3327f12bc334ae8a3d773a70562084f497e7b6c2eb42cdab6c5af843792f43a96327112586445262f8de101cac376d9d233718025c9c6f8
- SSDEEP
  
  6144:wrkS9uEo2S1YnQmCX492DkwNP3qpYFK3WSsmbjbqKcs3wP8pXAN7izY:wrkau6/eIo43ts7KcXgXAN7is
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2