Ecipekac

Description

(Kaspersky) We observed a multi-layer x64 loader used exclusively by this actor and dubbed Ecipekac after a unique string found in the second layer of the Ecipekac loader. The string is “Cake piece” in reverse (with a typo).

Names

Name
Ecipekac
DESLoader
SigLoader
HEAVYHAND

Category

Malware

Type

• Loader

Information

• https://securelist.com/apt10-sophisticated-multi-layered-loader-ecipekac-discovered-in-a41apt-campaign/101519/

Mitre Attack

• https://attack.mitre.org/software/S0622/

Other Information

Uuid

0b211331-3290-4379-9c5f-19e1c64cf028

Last Card Change

2022-12-30