7271cbfff40b2e277320f1803369a2b74bbeb3b488c7417c4b19e3f1f2e2dfc6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7271cbfff40b2e277320f1803369a2b74bbeb3b488c7417c4b19e3f1f2e2dfc6
Size

199KB
Sample

221030-3ryy7afbd6
MD5

a21ecd0e5bf6b9ee88f5c6c404e3bd80
SHA1

48983744356861a2a612aa8a184e0f7760ab2c8e
SHA256

7271cbfff40b2e277320f1803369a2b74bbeb3b488c7417c4b19e3f1f2e2dfc6
SHA512

fea0c65d609e4a8714096ec99322f108a1b83a9447c2f71b20bca3d0d0205a35c0807d13dd0522d4441f4fe5caa195c4f91cf1a2d87c9f0b3d4f33aae1aa6542
SSDEEP

3072:oYNQKPWDyDRefVJltZrpRl1P3Fr+4NUMHfrPnGSQf9n9WOrG0Jwvj31FCKq0CMqO:xNSDyDRO1thpW4eUPnGSRt31EKq0CG

Score

6^/10

Malware Config

Targets

- Target
  
  7271cbfff40b2e277320f1803369a2b74bbeb3b488c7417c4b19e3f1f2e2dfc6
- Size
  
  199KB
- MD5
  
  a21ecd0e5bf6b9ee88f5c6c404e3bd80
- SHA1
  
  48983744356861a2a612aa8a184e0f7760ab2c8e
- SHA256
  
  7271cbfff40b2e277320f1803369a2b74bbeb3b488c7417c4b19e3f1f2e2dfc6
- SHA512
  
  fea0c65d609e4a8714096ec99322f108a1b83a9447c2f71b20bca3d0d0205a35c0807d13dd0522d4441f4fe5caa195c4f91cf1a2d87c9f0b3d4f33aae1aa6542
- SSDEEP
  
  3072:oYNQKPWDyDRefVJltZrpRl1P3Fr+4NUMHfrPnGSQf9n9WOrG0Jwvj31FCKq0CMqO:xNSDyDRO1thpW4eUPnGSRt31EKq0CG
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2