67062d71e2b97502280296529ed52439993d4a51bc5edc434f83b1515393cc3e | Triage

Sharing

General

Target

67062d71e2b97502280296529ed52439993d4a51bc5edc434f83b1515393cc3e
Size

75KB
Sample

221002-ebb8gsghhl
MD5

65d05269c8ed2a2c71376fbe3ae740f0
SHA1

6d5fab16ffcddee7c55be06c74bde9eab0ff1bc6
SHA256

67062d71e2b97502280296529ed52439993d4a51bc5edc434f83b1515393cc3e
SHA512

120a18cf857713e13ff5f553c722e169c8c4b0cc52dff715e21c9513543044f00d3e525374a4bf7ec4b8582d6b1ad7abc7de7f7579745cf7aec3451a39d413fa
SSDEEP

1536:Of8Rk+51yRVnQdUfyHRjuR2BHUBVZOXX2E/FZL7/:iaTy7Qd2yHRmuHULTE/FV7/

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  67062d71e2b97502280296529ed52439993d4a51bc5edc434f83b1515393cc3e
- Size
  
  75KB
- MD5
  
  65d05269c8ed2a2c71376fbe3ae740f0
- SHA1
  
  6d5fab16ffcddee7c55be06c74bde9eab0ff1bc6
- SHA256
  
  67062d71e2b97502280296529ed52439993d4a51bc5edc434f83b1515393cc3e
- SHA512
  
  120a18cf857713e13ff5f553c722e169c8c4b0cc52dff715e21c9513543044f00d3e525374a4bf7ec4b8582d6b1ad7abc7de7f7579745cf7aec3451a39d413fa
- SSDEEP
  
  1536:Of8Rk+51yRVnQdUfyHRjuR2BHUBVZOXX2E/FZL7/:iaTy7Qd2yHRmuHULTE/FV7/
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2