c1dfc0d9ebd84252d14820e56461b8121b603227305a050b0cec976cc4d0b9ce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c1dfc0d9ebd84252d14820e56461b8121b603227305a050b0cec976cc4d0b9ce
Size

140KB
Sample

221020-cwpcfaaehm
MD5

53fc5330f6179e05451d7fdc74a68290
SHA1

a98a0dde03d52118adcf346ef511857c2bcf2060
SHA256

c1dfc0d9ebd84252d14820e56461b8121b603227305a050b0cec976cc4d0b9ce
SHA512

04e786e7af9e48ee7874ef7088dda5ee162b4131735f855cd9718ed046c7663817fb940b2b1149ae172b58a62d1ed4625a0d56086310eef3660aee72b0e4718f
SSDEEP

1536:554Q19FUR8NsrIZMYzxaRHDM6D4JlU3C3gv74rinWaoBploqF2F54Q19FUR8N:T4SAR8NcD4JlU3W9inroLloJ4SAR8N

Score

8^/10

Malware Config

Targets

- Target
  
  c1dfc0d9ebd84252d14820e56461b8121b603227305a050b0cec976cc4d0b9ce
- Size
  
  140KB
- MD5
  
  53fc5330f6179e05451d7fdc74a68290
- SHA1
  
  a98a0dde03d52118adcf346ef511857c2bcf2060
- SHA256
  
  c1dfc0d9ebd84252d14820e56461b8121b603227305a050b0cec976cc4d0b9ce
- SHA512
  
  04e786e7af9e48ee7874ef7088dda5ee162b4131735f855cd9718ed046c7663817fb940b2b1149ae172b58a62d1ed4625a0d56086310eef3660aee72b0e4718f
- SSDEEP
  
  1536:554Q19FUR8NsrIZMYzxaRHDM6D4JlU3C3gv74rinWaoBploqF2F54Q19FUR8N:T4SAR8NcD4JlU3W9inroLloJ4SAR8N
Score

8^/10
- Drops file in Drivers directory
- Executes dropped EXE
- Drops startup file
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2