4beec7ebb2bc04ead6aaeb2b475f7c734ae1b8449db59642a56f5f7eca0ec2ec | Triage

Sharing

General

Target

4beec7ebb2bc04ead6aaeb2b475f7c734ae1b8449db59642a56f5f7eca0ec2ec
Size

318KB
Sample

221124-ep92nsgb88
MD5

ccda60daf8808ee27c097cf561a94660
SHA1

acf6f106e1b9837c089881f6bcac3efce569f53e
SHA256

4beec7ebb2bc04ead6aaeb2b475f7c734ae1b8449db59642a56f5f7eca0ec2ec
SHA512

000d08f068b45d5e6e30db34405bb40229c44c1c68dcef38959df9972a61691f28b50b5bd5ac46d01e8aa97e66f975e280e10fa8feb2df344de3148ef5d10f11
SSDEEP

6144:zr4O9uEo2S1YnQmCX492DkwNP3qpYFjidYD7idoZ05wOgKBAzV:zr4Gu6/eIo4YWlqfhKBAzV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4beec7ebb2bc04ead6aaeb2b475f7c734ae1b8449db59642a56f5f7eca0ec2ec
- Size
  
  318KB
- MD5
  
  ccda60daf8808ee27c097cf561a94660
- SHA1
  
  acf6f106e1b9837c089881f6bcac3efce569f53e
- SHA256
  
  4beec7ebb2bc04ead6aaeb2b475f7c734ae1b8449db59642a56f5f7eca0ec2ec
- SHA512
  
  000d08f068b45d5e6e30db34405bb40229c44c1c68dcef38959df9972a61691f28b50b5bd5ac46d01e8aa97e66f975e280e10fa8feb2df344de3148ef5d10f11
- SSDEEP
  
  6144:zr4O9uEo2S1YnQmCX492DkwNP3qpYFjidYD7idoZ05wOgKBAzV:zr4Gu6/eIo4YWlqfhKBAzV
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2