1ccbb85a5b66a71d74d29449b54ca7f2a4e24fe4ea1ac3fa7916cd02dcf89ef9 | Triage

Sharing

General

Target

1ccbb85a5b66a71d74d29449b54ca7f2a4e24fe4ea1ac3fa7916cd02dcf89ef9
Size

304KB
Sample

221123-k1fvvshh44
MD5

ea1a898880e948524e752f637457a245
SHA1

681e0a3c8bd8b5d2ac8f61dd030d90815f3c7872
SHA256

1ccbb85a5b66a71d74d29449b54ca7f2a4e24fe4ea1ac3fa7916cd02dcf89ef9
SHA512

9d13ccf9e7bd5b580941f5185eb20267df54eb20b429dc1af04c3c08e7d702526942ccae8d75cded5da36e372e227dc2bf160168b1fd7f3ce0b0f492eaf2c82d
SSDEEP

6144:lrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPv:lrkuu6/eIo4tQW62T+uTwM6YVxm24v

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1ccbb85a5b66a71d74d29449b54ca7f2a4e24fe4ea1ac3fa7916cd02dcf89ef9
- Size
  
  304KB
- MD5
  
  ea1a898880e948524e752f637457a245
- SHA1
  
  681e0a3c8bd8b5d2ac8f61dd030d90815f3c7872
- SHA256
  
  1ccbb85a5b66a71d74d29449b54ca7f2a4e24fe4ea1ac3fa7916cd02dcf89ef9
- SHA512
  
  9d13ccf9e7bd5b580941f5185eb20267df54eb20b429dc1af04c3c08e7d702526942ccae8d75cded5da36e372e227dc2bf160168b1fd7f3ce0b0f492eaf2c82d
- SSDEEP
  
  6144:lrkW9uEo2S1YnQmCX492DkwNP3qpYF4AqqWb+qR9h+uqkNfoM6YV5TmNa1a3SyPv:lrkuu6/eIo4tQW62T+uTwM6YVxm24v
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2