15325a3e24c4ae6c8c4945f4737ce05071600b0f83c662b040e438544f9184b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15325a3e24c4ae6c8c4945f4737ce05071600b0f83c662b040e438544f9184b1
Size

53KB
Sample

221004-czw7fshbfr
MD5

3f10cad774821e360aca27bdb53529e0
SHA1

4d16c297d27ea62493a05a998065a4419d0db1cd
SHA256

15325a3e24c4ae6c8c4945f4737ce05071600b0f83c662b040e438544f9184b1
SHA512

c3d59d88e10295788b1278a57d513116834d88261b2ec857b70fae8d3d71661427b1a4db29e4ee3636773fd652c5690911797ad6a0dfe0b9cc6f2be4ca15d3fe
SSDEEP

768:9OcxeXxZFPgs1qjFh9EQylblq9w/VM8H7wKjwXbIkbdT:9Ocx6Zpgsgjb9EQaq9oVlbwKkXcIx

Score

7^/10

Malware Config

Targets

- Target
  
  15325a3e24c4ae6c8c4945f4737ce05071600b0f83c662b040e438544f9184b1
- Size
  
  53KB
- MD5
  
  3f10cad774821e360aca27bdb53529e0
- SHA1
  
  4d16c297d27ea62493a05a998065a4419d0db1cd
- SHA256
  
  15325a3e24c4ae6c8c4945f4737ce05071600b0f83c662b040e438544f9184b1
- SHA512
  
  c3d59d88e10295788b1278a57d513116834d88261b2ec857b70fae8d3d71661427b1a4db29e4ee3636773fd652c5690911797ad6a0dfe0b9cc6f2be4ca15d3fe
- SSDEEP
  
  768:9OcxeXxZFPgs1qjFh9EQylblq9w/VM8H7wKjwXbIkbdT:9Ocx6Zpgsgjb9EQaq9oVlbwKkXcIx
Score

7^/10
- Deletes itself
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2