b58544ab567a34dd77dc1b8440c3ce2794a8bc6655f4e463cf9df2edac3cfd6d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b58544ab567a34dd77dc1b8440c3ce2794a8bc6655f4e463cf9df2edac3cfd6d
Size

278KB
Sample

221028-w33m7aafhm
MD5

0cb01e39fdb3e6cb0ec6baaf009d8e24
SHA1

239977b2a9c706d53cc65e8e2aef1a27936772f5
SHA256

b58544ab567a34dd77dc1b8440c3ce2794a8bc6655f4e463cf9df2edac3cfd6d
SHA512

956b50a8906be4d0c7f8d8a238518b4953d0a72514103ea414b8fa473d52b9c08b11a7d3c2f12c010f2123cbf5efefe72c83f0cd7e097ec33db2a5271a049e9e
SSDEEP

6144:L1NM5pfjPTHZiFWIAl8Off93wwi/CqWQbc:L1upfjLHZic8OGCq3bc

Score

8^/10

Malware Config

Targets

- Target
  
  b58544ab567a34dd77dc1b8440c3ce2794a8bc6655f4e463cf9df2edac3cfd6d
- Size
  
  278KB
- MD5
  
  0cb01e39fdb3e6cb0ec6baaf009d8e24
- SHA1
  
  239977b2a9c706d53cc65e8e2aef1a27936772f5
- SHA256
  
  b58544ab567a34dd77dc1b8440c3ce2794a8bc6655f4e463cf9df2edac3cfd6d
- SHA512
  
  956b50a8906be4d0c7f8d8a238518b4953d0a72514103ea414b8fa473d52b9c08b11a7d3c2f12c010f2123cbf5efefe72c83f0cd7e097ec33db2a5271a049e9e
- SSDEEP
  
  6144:L1NM5pfjPTHZiFWIAl8Off93wwi/CqWQbc:L1upfjLHZic8OGCq3bc
Score

8^/10
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2