d606ff9e7342727bfa807b1e2ee037c4e170cf284c45fe12b5de2d9022b81f2d | Triage

Sharing

General

Target

d606ff9e7342727bfa807b1e2ee037c4e170cf284c45fe12b5de2d9022b81f2d
Size

461KB
Sample

221030-cfes3ahacj
MD5

a33492180a8cb4a75de5f1175d00b860
SHA1

52263f9358bf64879f8659b4e8fbd8b2c210ac4d
SHA256

d606ff9e7342727bfa807b1e2ee037c4e170cf284c45fe12b5de2d9022b81f2d
SHA512

642b74a5b225cbc526bbb6332decf4475b1aaa427f325da1db2969284f7ab3bb3f8d17682e60ef03fc682da868601cb4410232d4012f82ef193534cda864f74d
SSDEEP

6144:iv27jyGy1/pEli1TQXG3QsE0VdQTQRwvwjvaIy7SeAefefUsDB:6/Fpl1UXGRVpw4jyIy2eAefeZN

Score

8^/10

upx

Malware Config

Targets

- Target
  
  d606ff9e7342727bfa807b1e2ee037c4e170cf284c45fe12b5de2d9022b81f2d
- Size
  
  461KB
- MD5
  
  a33492180a8cb4a75de5f1175d00b860
- SHA1
  
  52263f9358bf64879f8659b4e8fbd8b2c210ac4d
- SHA256
  
  d606ff9e7342727bfa807b1e2ee037c4e170cf284c45fe12b5de2d9022b81f2d
- SHA512
  
  642b74a5b225cbc526bbb6332decf4475b1aaa427f325da1db2969284f7ab3bb3f8d17682e60ef03fc682da868601cb4410232d4012f82ef193534cda864f74d
- SSDEEP
  
  6144:iv27jyGy1/pEli1TQXG3QsE0VdQTQRwvwjvaIy7SeAefefUsDB:6/Fpl1UXGRVpw4jyIy2eAefeZN
Score

8^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Replication Through Removable Media

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2