3626c256a45b540c135e83252bf3fbfe470c5186bbe757f7e40b527ec4e0032d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3626c256a45b540c135e83252bf3fbfe470c5186bbe757f7e40b527ec4e0032d
Size

151KB
Sample

221020-wz667shda8
MD5

a03d9a7bd3e5ce65dd5a957161760779
SHA1

32fd14b6bc3a5fc3cfc2435b2cbf80011f487d07
SHA256

3626c256a45b540c135e83252bf3fbfe470c5186bbe757f7e40b527ec4e0032d
SHA512

8f08db6dc68231a3b93145d6ab0295f6819b54369ad80dea9acb5947c8a0ae6af442ca0de29924dea2bc7e2a3e0e418a6ac83957ece4d0ef6f207a9375a06a81
SSDEEP

3072:gvmLKFwDaO6dC/++OxLOWe7Ih/i9XYnYZYs20Jaw1nQ5nk:isaO+C/+++LvoFYYZCYaAak

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  3626c256a45b540c135e83252bf3fbfe470c5186bbe757f7e40b527ec4e0032d
- Size
  
  151KB
- MD5
  
  a03d9a7bd3e5ce65dd5a957161760779
- SHA1
  
  32fd14b6bc3a5fc3cfc2435b2cbf80011f487d07
- SHA256
  
  3626c256a45b540c135e83252bf3fbfe470c5186bbe757f7e40b527ec4e0032d
- SHA512
  
  8f08db6dc68231a3b93145d6ab0295f6819b54369ad80dea9acb5947c8a0ae6af442ca0de29924dea2bc7e2a3e0e418a6ac83957ece4d0ef6f207a9375a06a81
- SSDEEP
  
  3072:gvmLKFwDaO6dC/++OxLOWe7Ih/i9XYnYZYs20Jaw1nQ5nk:isaO+C/+++LvoFYYZCYaAak
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2