ee5417f67fd1137a319a370a8c435d0666f6bbd56173bd74ee8089fa928bdd88 | Triage

Sharing

General

Target

ee5417f67fd1137a319a370a8c435d0666f6bbd56173bd74ee8089fa928bdd88
Size

312KB
Sample

221123-hw9w2aee69
MD5

8918875d0ff3de216dc91faa67a3d7ef
SHA1

1df49e1feeb5acf8e3494910aec9193f173e3f06
SHA256

ee5417f67fd1137a319a370a8c435d0666f6bbd56173bd74ee8089fa928bdd88
SHA512

84fd150e40ee35456cc4f761eab3bb2eb17f2a19707608e09610e7fb8d82eaf609d2d561ad4e3728f44f45f56b0976ea18427a78a67741b6356b1ee84869f70d
SSDEEP

6144:UrJ9uEo2S1YnQmCX492DkwNP3qpYFkwlWKM23DpJQ+JXUOy1Lr3Dv1A+CiyGdUzL:Urfu6/eIo4XwlWKM231t5UnRr3DdRp5+

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ee5417f67fd1137a319a370a8c435d0666f6bbd56173bd74ee8089fa928bdd88
- Size
  
  312KB
- MD5
  
  8918875d0ff3de216dc91faa67a3d7ef
- SHA1
  
  1df49e1feeb5acf8e3494910aec9193f173e3f06
- SHA256
  
  ee5417f67fd1137a319a370a8c435d0666f6bbd56173bd74ee8089fa928bdd88
- SHA512
  
  84fd150e40ee35456cc4f761eab3bb2eb17f2a19707608e09610e7fb8d82eaf609d2d561ad4e3728f44f45f56b0976ea18427a78a67741b6356b1ee84869f70d
- SSDEEP
  
  6144:UrJ9uEo2S1YnQmCX492DkwNP3qpYFkwlWKM23DpJQ+JXUOy1Lr3Dv1A+CiyGdUzL:Urfu6/eIo4XwlWKM231t5UnRr3DdRp5+
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2