ecccd310bf9cafea4c22f0fbfe8c96fce3809183ff6ab2d8d37ac60c3b6a9325 | Triage

Sharing

General

Target

ecccd310bf9cafea4c22f0fbfe8c96fce3809183ff6ab2d8d37ac60c3b6a9325
Size

347KB
Sample

221127-3f2kyaca8s
MD5

cd9ceba8a5cc9c5dcda4e5d27a7891d0
SHA1

2c5a13bf2bdf7e395e91b8fc14ec113c49763d86
SHA256

ecccd310bf9cafea4c22f0fbfe8c96fce3809183ff6ab2d8d37ac60c3b6a9325
SHA512

0bbfb7cc7a1519d763901152a7618b2feb466c3cf7913ba24470d917d0609cc0c0f802e2299075f30dca3d1f767d2374fceb76bebc676e409a516767ee5adc42
SSDEEP

6144:jrPgVbUzkuvcBYC47l2xXXhznuwn8WyHJFStKq/m7O91:jrIGkuveY3mXdnuwn8WT/D

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ecccd310bf9cafea4c22f0fbfe8c96fce3809183ff6ab2d8d37ac60c3b6a9325
- Size
  
  347KB
- MD5
  
  cd9ceba8a5cc9c5dcda4e5d27a7891d0
- SHA1
  
  2c5a13bf2bdf7e395e91b8fc14ec113c49763d86
- SHA256
  
  ecccd310bf9cafea4c22f0fbfe8c96fce3809183ff6ab2d8d37ac60c3b6a9325
- SHA512
  
  0bbfb7cc7a1519d763901152a7618b2feb466c3cf7913ba24470d917d0609cc0c0f802e2299075f30dca3d1f767d2374fceb76bebc676e409a516767ee5adc42
- SSDEEP
  
  6144:jrPgVbUzkuvcBYC47l2xXXhznuwn8WyHJFStKq/m7O91:jrIGkuveY3mXdnuwn8WT/D
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2