dd1bb3afbf96c822af8d5b8633e265621dc997a1e78e882f081124e255df59b3 | Triage

Sharing

General

Target

dd1bb3afbf96c822af8d5b8633e265621dc997a1e78e882f081124e255df59b3
Size

34KB
Sample

221123-m8p5lsgb35
MD5

1d327d8c9b18bb7149d7d3395a508aab
SHA1

8c358af5a5da471c2a266bca08b88bc0465cbc18
SHA256

dd1bb3afbf96c822af8d5b8633e265621dc997a1e78e882f081124e255df59b3
SHA512

d659be63c99ede00518e702763fe29b7853becc45433a017790bf84089d8a29d42b3d6d85684efed70392f6a446f7ea3bc55a2d998e15588534b3539306f420d
SSDEEP

768:W/H5FyHlSh9squ1AfNCGRlgOpNI7+fd/xfTHefirw5:yH5FyH0h9sgNCGbgOpNI7+fFJEi

Score

8^/10

Malware Config

Targets

- Target
  
  dd1bb3afbf96c822af8d5b8633e265621dc997a1e78e882f081124e255df59b3
- Size
  
  34KB
- MD5
  
  1d327d8c9b18bb7149d7d3395a508aab
- SHA1
  
  8c358af5a5da471c2a266bca08b88bc0465cbc18
- SHA256
  
  dd1bb3afbf96c822af8d5b8633e265621dc997a1e78e882f081124e255df59b3
- SHA512
  
  d659be63c99ede00518e702763fe29b7853becc45433a017790bf84089d8a29d42b3d6d85684efed70392f6a446f7ea3bc55a2d998e15588534b3539306f420d
- SSDEEP
  
  768:W/H5FyHlSh9squ1AfNCGRlgOpNI7+fd/xfTHefirw5:yH5FyH0h9sgNCGbgOpNI7+fFJEi
Score

8^/10
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2