8fbff51b36c8aca2959df884b0a54f580d2a6c2f89ad796cc07185a8ea4f3aad | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Installer (18).msi
Size

103.7MB
Sample

221103-zfk2eaehf2
MD5

b40c4d5918da4dcfe944f478d88e0608
SHA1

0a18b0c07e2e72f6ac9770d3aa19ccc2dca28673
SHA256

8fbff51b36c8aca2959df884b0a54f580d2a6c2f89ad796cc07185a8ea4f3aad
SHA512

668cbe206aae3efac3afddf6677a4f56cb1036d3742bea7b6129f6d06326ace9a75801da63e8f86e09664ceafc00a639c2d54863070ccb7594c292244f189e0f
SSDEEP

1572864:8WLTaKzM9BmOUyn/Uai9EJrurFifHm7q/qBa7YOIEYp/atzXmZ:HIaOUcsaAEc4fHfMeYIYpCp

Score

8^/10

Malware Config

Targets

- Target
  
  Installer (18).msi
- Size
  
  103.7MB
- MD5
  
  b40c4d5918da4dcfe944f478d88e0608
- SHA1
  
  0a18b0c07e2e72f6ac9770d3aa19ccc2dca28673
- SHA256
  
  8fbff51b36c8aca2959df884b0a54f580d2a6c2f89ad796cc07185a8ea4f3aad
- SHA512
  
  668cbe206aae3efac3afddf6677a4f56cb1036d3742bea7b6129f6d06326ace9a75801da63e8f86e09664ceafc00a639c2d54863070ccb7594c292244f189e0f
- SSDEEP
  
  1572864:8WLTaKzM9BmOUyn/Uai9EJrurFifHm7q/qBa7YOIEYp/atzXmZ:HIaOUcsaAEc4fHfMeYIYpCp
Score

8^/10
- Blocklisted process makes network request
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2