c1a063d9f97ae532dcc7f29b9d864798eb88800db1426f1c472ddf8f7ace0eb2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c1a063d9f97ae532dcc7f29b9d864798eb88800db1426f1c472ddf8f7ace0eb2
Size

180KB
Sample

221106-szyy2shdd2
MD5

0ef9d484b33d237fd6a2dc956bf49540
SHA1

cf152d960242ca5f40b146e385b616cc52999201
SHA256

c1a063d9f97ae532dcc7f29b9d864798eb88800db1426f1c472ddf8f7ace0eb2
SHA512

3bbd23bf6aad7a4902e7b4e275b7e41dedc698b67399754cd9e2236badeb78066a9866d8d7ceb6b6e25555bacb62092d352bbbf9e2bbc4a620c18cd76078a6a4
SSDEEP

3072:jShZ406dHnD613YZ5iCL59Uk8KgTOD7H9uJp7DJDW11PALhGfmMzHTwjyB:WZ40P3YziCnUk832AbQ5AVGOM/tB

Score

8^/10

Malware Config

Targets

- Target
  
  c1a063d9f97ae532dcc7f29b9d864798eb88800db1426f1c472ddf8f7ace0eb2
- Size
  
  180KB
- MD5
  
  0ef9d484b33d237fd6a2dc956bf49540
- SHA1
  
  cf152d960242ca5f40b146e385b616cc52999201
- SHA256
  
  c1a063d9f97ae532dcc7f29b9d864798eb88800db1426f1c472ddf8f7ace0eb2
- SHA512
  
  3bbd23bf6aad7a4902e7b4e275b7e41dedc698b67399754cd9e2236badeb78066a9866d8d7ceb6b6e25555bacb62092d352bbbf9e2bbc4a620c18cd76078a6a4
- SSDEEP
  
  3072:jShZ406dHnD613YZ5iCL59Uk8KgTOD7H9uJp7DJDW11PALhGfmMzHTwjyB:WZ40P3YziCnUk832AbQ5AVGOM/tB
Score

8^/10
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2