c3ecad86e264b618d191a72376edd7f0164cfb4484bc86365e8637c42406b7e4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c3ecad86e264b618d191a72376edd7f0164cfb4484bc86365e8637c42406b7e4
Size

38KB
Sample

221205-ppfsyadg8s
MD5

691b3334abad9f53479d673745fb28dc
SHA1

b3e00107ea83de3ed9f382b55168da1efbd17674
SHA256

c3ecad86e264b618d191a72376edd7f0164cfb4484bc86365e8637c42406b7e4
SHA512

41c03949fa93ce408ad8e4e0e26a979211b866f16ee35e2eba6c1d14d59d77748441287a65940780f3c15fbe8cc5b7902cc62f95b35534d7acfb447d8e9f9c5d
SSDEEP

768:lDeIPiz78m0cRrgbrw6nvFRs78FfUG6UUZd1VWg7vvPVnwqnSmkrwf/w:le2ismTBgQ6vFRlaHfv+qnor/

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  c3ecad86e264b618d191a72376edd7f0164cfb4484bc86365e8637c42406b7e4
- Size
  
  38KB
- MD5
  
  691b3334abad9f53479d673745fb28dc
- SHA1
  
  b3e00107ea83de3ed9f382b55168da1efbd17674
- SHA256
  
  c3ecad86e264b618d191a72376edd7f0164cfb4484bc86365e8637c42406b7e4
- SHA512
  
  41c03949fa93ce408ad8e4e0e26a979211b866f16ee35e2eba6c1d14d59d77748441287a65940780f3c15fbe8cc5b7902cc62f95b35534d7acfb447d8e9f9c5d
- SSDEEP
  
  768:lDeIPiz78m0cRrgbrw6nvFRs78FfUG6UUZd1VWg7vvPVnwqnSmkrwf/w:le2ismTBgQ6vFRlaHfv+qnor/
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2