Overview

overview

8

Static

static

ee1cf20a1d...e1.exe

windows7-x64

8

ee1cf20a1d...e1.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ee1cf20a1da0bfa3ee30acb6ec902a0ecddc9b440450c4c45f2d06840eb73ae1

  • Size

    602KB

  • Sample

    221123-l6ds5adb95

  • MD5

    b736fc628d248bb1823c5a0dc64c52c7

  • SHA1

    605ab909fb862975eedd321fc42d73a273fb8369

  • SHA256

    ee1cf20a1da0bfa3ee30acb6ec902a0ecddc9b440450c4c45f2d06840eb73ae1

  • SHA512

    87bcc732b067998c88ef65c6e4bc462802e29307495c6342534b686c8bbb9044f0bb27f2996ae2fb809d182c1595f1c3f8d3afd8bd794520a9e4dead0ddd9a59

  • SSDEEP

    12288:6Iny5DYTWZ/r4zlJue+093vXAdmruBPoiI6uTWmpxFDxi:cUTWZ/kzlTH93em4I6SWixFV

Score
8/10
discovery

Malware Config

Targets

    • Target

      ee1cf20a1da0bfa3ee30acb6ec902a0ecddc9b440450c4c45f2d06840eb73ae1

    • Size

      602KB

    • MD5

      b736fc628d248bb1823c5a0dc64c52c7

    • SHA1

      605ab909fb862975eedd321fc42d73a273fb8369

    • SHA256

      ee1cf20a1da0bfa3ee30acb6ec902a0ecddc9b440450c4c45f2d06840eb73ae1

    • SHA512

      87bcc732b067998c88ef65c6e4bc462802e29307495c6342534b686c8bbb9044f0bb27f2996ae2fb809d182c1595f1c3f8d3afd8bd794520a9e4dead0ddd9a59

    • SSDEEP

      12288:6Iny5DYTWZ/r4zlJue+093vXAdmruBPoiI6uTWmpxFDxi:cUTWZ/kzlTH93em4I6SWixFV

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks