ef2eb7daad11fde71cd32644eef3867050ffbad6a0196d7fbf1baf75c3cc0fe6 | Triage

Sharing

General

Target

ef2eb7daad11fde71cd32644eef3867050ffbad6a0196d7fbf1baf75c3cc0fe6
Size

468KB
Sample

241121-ndldlswmak
MD5

8cf77abdaa8d96034e7e800d3cd67872
SHA1

87532683c2e3d531989f9b6203b35a67cbbec5b9
SHA256

ef2eb7daad11fde71cd32644eef3867050ffbad6a0196d7fbf1baf75c3cc0fe6
SHA512

772e6f179335a4df2d8e75c9494a5da3fae574b46d586d7e291c7abff7a9180931edaea3ae392d329cbed37b25354f3aee3022735c814abc084fb31a37d6be3b
SSDEEP

3072:vQozogVQI05QtbY9HzoOcfr/bChzPmpxnLHeaVndQnILn0Ug11lH:vQEo48QtqHMOcfimk4Qny0Ug1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ef2eb7daad11fde71cd32644eef3867050ffbad6a0196d7fbf1baf75c3cc0fe6
- Size
  
  468KB
- MD5
  
  8cf77abdaa8d96034e7e800d3cd67872
- SHA1
  
  87532683c2e3d531989f9b6203b35a67cbbec5b9
- SHA256
  
  ef2eb7daad11fde71cd32644eef3867050ffbad6a0196d7fbf1baf75c3cc0fe6
- SHA512
  
  772e6f179335a4df2d8e75c9494a5da3fae574b46d586d7e291c7abff7a9180931edaea3ae392d329cbed37b25354f3aee3022735c814abc084fb31a37d6be3b
- SSDEEP
  
  3072:vQozogVQI05QtbY9HzoOcfr/bChzPmpxnLHeaVndQnILn0Ug11lH:vQEo48QtqHMOcfimk4Qny0Ug1
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2