ecbc3da121de7b8ad3f052e631c2a60436e30d939d5f4616b3e109ecd1f10cb7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ecbc3da121de7b8ad3f052e631c2a60436e30d939d5f4616b3e109ecd1f10cb7
Size

327KB
Sample

221127-g3ztzaad3v
MD5

498a40af1d1e4dbc6571c8541d89f9a3
SHA1

ba40e08dd71be4e307f22e172ad0aed0eeccb9e1
SHA256

ecbc3da121de7b8ad3f052e631c2a60436e30d939d5f4616b3e109ecd1f10cb7
SHA512

3c1c9d5384726a4ebef15440c57085c71a60ef3e8bb0bec0f8bf7d921d076059c3b7c0f5caa4c20f26a66e87ebb3ff1933fc5a559fb08e857ff3f922f35844be
SSDEEP

6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F/:Rr4iu6/eIo4Rsw33AtsmQK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ecbc3da121de7b8ad3f052e631c2a60436e30d939d5f4616b3e109ecd1f10cb7
- Size
  
  327KB
- MD5
  
  498a40af1d1e4dbc6571c8541d89f9a3
- SHA1
  
  ba40e08dd71be4e307f22e172ad0aed0eeccb9e1
- SHA256
  
  ecbc3da121de7b8ad3f052e631c2a60436e30d939d5f4616b3e109ecd1f10cb7
- SHA512
  
  3c1c9d5384726a4ebef15440c57085c71a60ef3e8bb0bec0f8bf7d921d076059c3b7c0f5caa4c20f26a66e87ebb3ff1933fc5a559fb08e857ff3f922f35844be
- SSDEEP
  
  6144:Rr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6F/:Rr4iu6/eIo4Rsw33AtsmQK
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2