c8f51808d4e57b2a422597e0631f10a4cb41e1353b7030d663650d094d423f66 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c8f51808d4e57b2a422597e0631f10a4cb41e1353b7030d663650d094d423f66
Size

60KB
Sample

221029-xgvacsafe6
MD5

a35aeb2391303f8b1f5bd14fed34d330
SHA1

6228a93a915ac7bc2e02a3a4b5e7cf136c871f60
SHA256

c8f51808d4e57b2a422597e0631f10a4cb41e1353b7030d663650d094d423f66
SHA512

754b6272b728a0831e4bf6167db8adecc364706a998033a70ac2b44e1a6b3770500774d35232b2c288b27f7905f770686de0ed468b44f8dea2a1b8e03ca9b8f9
SSDEEP

768:roelqWcSFbi/XLORrc+1MHsGBA79wx9FTmcJJH/a:HAWBGORrYS79wx1DHy

Score

7^/10

Malware Config

Targets

- Target
  
  c8f51808d4e57b2a422597e0631f10a4cb41e1353b7030d663650d094d423f66
- Size
  
  60KB
- MD5
  
  a35aeb2391303f8b1f5bd14fed34d330
- SHA1
  
  6228a93a915ac7bc2e02a3a4b5e7cf136c871f60
- SHA256
  
  c8f51808d4e57b2a422597e0631f10a4cb41e1353b7030d663650d094d423f66
- SHA512
  
  754b6272b728a0831e4bf6167db8adecc364706a998033a70ac2b44e1a6b3770500774d35232b2c288b27f7905f770686de0ed468b44f8dea2a1b8e03ca9b8f9
- SSDEEP
  
  768:roelqWcSFbi/XLORrc+1MHsGBA79wx9FTmcJJH/a:HAWBGORrYS79wx1DHy
Score

7^/10
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2