1e64c7926a83950a7a40c504f2caccfcf75dfb9b1a79c6fc6197ffc9d28899cc | Triage

Sharing

General

Target

1e64c7926a83950a7a40c504f2caccfcf75dfb9b1a79c6fc6197ffc9d28899cc
Size

32KB
Sample

221030-yme83ahdfj
MD5

90e444b1553c3ead4150635c7e9f9170
SHA1

501e5cc27c4a403b682e7c37c92a7a1ca43b8522
SHA256

1e64c7926a83950a7a40c504f2caccfcf75dfb9b1a79c6fc6197ffc9d28899cc
SHA512

b77062ad221a80cd324eb16263eb45b019cb5418be7185a4c516b43f039da8374c75ffe29130136781f7100b591237b39e48a6f438e1dd6d5c7504541b9f7bed
SSDEEP

384:gryquyGYPdVZktmw+DRCt6t+JKilVg0UENw87E/j3EJnjm:gOquNYFVav+t8U+JKirjT34/j0Jjm

Score

7^/10

Malware Config

Targets

- Target
  
  1e64c7926a83950a7a40c504f2caccfcf75dfb9b1a79c6fc6197ffc9d28899cc
- Size
  
  32KB
- MD5
  
  90e444b1553c3ead4150635c7e9f9170
- SHA1
  
  501e5cc27c4a403b682e7c37c92a7a1ca43b8522
- SHA256
  
  1e64c7926a83950a7a40c504f2caccfcf75dfb9b1a79c6fc6197ffc9d28899cc
- SHA512
  
  b77062ad221a80cd324eb16263eb45b019cb5418be7185a4c516b43f039da8374c75ffe29130136781f7100b591237b39e48a6f438e1dd6d5c7504541b9f7bed
- SSDEEP
  
  384:gryquyGYPdVZktmw+DRCt6t+JKilVg0UENw87E/j3EJnjm:gOquNYFVav+t8U+JKirjT34/j0Jjm
Score

7^/10
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2