a989e071f0f23d3cbfd47959380e66a1a2d23265e94da47a519ca181e280185e | Triage

Sharing

General

Target

a989e071f0f23d3cbfd47959380e66a1a2d23265e94da47a519ca181e280185e
Size

31KB
Sample

221003-nyd52aecer
MD5

64fbf2e46662151ee8e81bbafabd852b
SHA1

f316fab1a4ce8f8aa71502b8e19c372e6687cf13
SHA256

a989e071f0f23d3cbfd47959380e66a1a2d23265e94da47a519ca181e280185e
SHA512

d42987a899bb6a4858621f7fc2601179d3a5e3d40f9c89ba1b2157218c570c0c1009439b553e5380eea1b5a8e5073f3b0e21d0782f513346d1a859004bf8a59c
SSDEEP

768:BvlvZ2AS9Ck2YCajsy51xIt4INnbcuyD7U+NM:BNvPot2ObI2INnouy8iM

Score

7^/10

Malware Config

Targets

- Target
  
  a989e071f0f23d3cbfd47959380e66a1a2d23265e94da47a519ca181e280185e
- Size
  
  31KB
- MD5
  
  64fbf2e46662151ee8e81bbafabd852b
- SHA1
  
  f316fab1a4ce8f8aa71502b8e19c372e6687cf13
- SHA256
  
  a989e071f0f23d3cbfd47959380e66a1a2d23265e94da47a519ca181e280185e
- SHA512
  
  d42987a899bb6a4858621f7fc2601179d3a5e3d40f9c89ba1b2157218c570c0c1009439b553e5380eea1b5a8e5073f3b0e21d0782f513346d1a859004bf8a59c
- SSDEEP
  
  768:BvlvZ2AS9Ck2YCajsy51xIt4INnbcuyD7U+NM:BNvPot2ObI2INnouy8iM
Score

7^/10
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2