ee389da612e06d07c6c024a947d9aa79b95f601e1b135057c3cdd27fa2cf9cff | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ee389da612e06d07c6c024a947d9aa79b95f601e1b135057c3cdd27fa2cf9cff
Size

316KB
Sample

221128-ef3k8sch25
MD5

4134687a3b930418a7da9cff74e6ef66
SHA1

bc89c7a439ab3db35164d33c3486faa96e945bd4
SHA256

ee389da612e06d07c6c024a947d9aa79b95f601e1b135057c3cdd27fa2cf9cff
SHA512

f7fc0d99a98b62dcbe40a8e0f8d6812d80f9a15d4f59313b8ab45bdf9b57bc826ad30a83788cfea21f9118fa7cbaca30e97fc1cd8c75f59e2d7c80cad3f36162
SSDEEP

6144:prvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVE:prkkuveY3zhlV6tmDxzwVE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ee389da612e06d07c6c024a947d9aa79b95f601e1b135057c3cdd27fa2cf9cff
- Size
  
  316KB
- MD5
  
  4134687a3b930418a7da9cff74e6ef66
- SHA1
  
  bc89c7a439ab3db35164d33c3486faa96e945bd4
- SHA256
  
  ee389da612e06d07c6c024a947d9aa79b95f601e1b135057c3cdd27fa2cf9cff
- SHA512
  
  f7fc0d99a98b62dcbe40a8e0f8d6812d80f9a15d4f59313b8ab45bdf9b57bc826ad30a83788cfea21f9118fa7cbaca30e97fc1cd8c75f59e2d7c80cad3f36162
- SSDEEP
  
  6144:prvbUzkuvcBYC47l2xmDZH4xBsprVIvThDm9FdAZ+x99wVE:prkkuveY3zhlV6tmDxzwVE
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2