128a226f7c630b5d02b5e20a54ab02a6828300d991d23b9ce83833ab3d6879e7 | Triage

Sharing

General

Target

7967756132.zip
Size

153KB
Sample

220913-qgs9qsfff6
MD5

4bee618a71b8b1663ce9a2609e2e755e
SHA1

d24ab6a3d30b6ac15268ab4fb27f09d31fad0402
SHA256

128a226f7c630b5d02b5e20a54ab02a6828300d991d23b9ce83833ab3d6879e7
SHA512

6d21b6f6d913f93b9d7c6356637379e50bc62e5dc736fe07f5accc90c81e1f62ff7199b19b3019815229dad63c607944fcec03d89debad27830bbeb2872f73a4
SSDEEP

3072:mSNns4tIWpaX4ZXKkw4l4e/TAIv25hysFP5elSEXJm0G9RM/YvqzEUX6Dp:9fIWkEXKF0TePaYJM/6gzq9

Score

6^/10

Malware Config

Targets

- Target
  
  c837cb372baa763baaf29a4b1d80ae41995ed61ed939aacf87f70ffce18d2cdd
- Size
  
  158KB
- MD5
  
  5b80481385c2cddd530b31b0c31f2d2a
- SHA1
  
  d0ceafd57f455dec7261daeaf82e1bbb55724151
- SHA256
  
  c837cb372baa763baaf29a4b1d80ae41995ed61ed939aacf87f70ffce18d2cdd
- SHA512
  
  22fef505bb6afaea7e107bb173904ad71cc9757d2c0f08f1cb9238a0704c9760c7768ccf6acbf8cc0f23219e0243b12c3a70c6d6bcae8026111737c48f74b2ea
- SSDEEP
  
  3072:XVdn5xhOYGyTTaQoZEAJKHHoXMMCeLuPC9h/dHHmP+iDFjS8NMu8aIuEQh+:XVrvaQoJeIXMmuPCLd1+jL8FQE
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2