buer | cf91ba98b1c8faba7f89257452b72656f810063ba402a1d5e815a881ec43418f | Triage

Sharing

General

Target

fdafeff.exe
Size

362KB
Sample

201003-wd7endd13e
MD5

1be0b4215bf8abfa0bb8920fd7749dc4
SHA1

d5ece5b643c473e4e06e2701d06b3fb8b4327331
SHA256

cf91ba98b1c8faba7f89257452b72656f810063ba402a1d5e815a881ec43418f
SHA512

274942f59b5c3458f8b68b3394cfab46f07370887ee374d216ce0e92c5c1ec1421d117cab685ade33360d98c9fbac88d5d1147c321568c3888e58a48f8777087

Score

10^/10

buer loader

Malware Config

Targets

- Target
  
  fdafeff.exe
- Size
  
  362KB
- MD5
  
  1be0b4215bf8abfa0bb8920fd7749dc4
- SHA1
  
  d5ece5b643c473e4e06e2701d06b3fb8b4327331
- SHA256
  
  cf91ba98b1c8faba7f89257452b72656f810063ba402a1d5e815a881ec43418f
- SHA512
  
  274942f59b5c3458f8b68b3394cfab46f07370887ee374d216ce0e92c5c1ec1421d117cab685ade33360d98c9fbac88d5d1147c321568c3888e58a48f8777087
Score

10^/10

buer loader
- Buer
  Buer is a new modular loader first seen in August 2019.
  loader buer
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2