rustybuer | 2b093ef5eef05f81d6b69c61951091a399ccf6dbc42df822c40f35146a04523c | Triage

Sharing

General

Target

2b093ef5eef05f81d6b69c61951091a399ccf6dbc42df822c40f35146a04523c
Size

1.2MB
Sample

220130-h99s7ahef2
MD5

003b5373a5c5a4bdcef827a6ad335cc7
SHA1

2f535266344cc774d506fa517aab97d74d0ea76a
SHA256

2b093ef5eef05f81d6b69c61951091a399ccf6dbc42df822c40f35146a04523c
SHA512

ef3df7d2a5a9b8b2145e77ead4edb27db07d092d886f2ac3d94546974a96751f34fb940d4b1d88ccec4a443dbb4c3d5dd3ce4be68bb0394a16eb260fa4f91ab8

Score

10^/10

rustybuer

Malware Config

Extracted

Family

rustybuer

C2

https://cerionetya.com/

Targets

- Target
  
  2b093ef5eef05f81d6b69c61951091a399ccf6dbc42df822c40f35146a04523c
- Size
  
  1.2MB
- MD5
  
  003b5373a5c5a4bdcef827a6ad335cc7
- SHA1
  
  2f535266344cc774d506fa517aab97d74d0ea76a
- SHA256
  
  2b093ef5eef05f81d6b69c61951091a399ccf6dbc42df822c40f35146a04523c
- SHA512
  
  ef3df7d2a5a9b8b2145e77ead4edb27db07d092d886f2ac3d94546974a96751f34fb940d4b1d88ccec4a443dbb4c3d5dd3ce4be68bb0394a16eb260fa4f91ab8
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2