Overview

overview

7

Static

static

12bf0ffad6...0b.exe

windows7-x64

7

12bf0ffad6...0b.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    12bf0ffad64011452112e5825f9161e6b79479c39e0f9b15daad5937d43f8f0b

  • Size

    456KB

  • Sample

    221123-tchh8adf64

  • MD5

    059af5b26ac60c50f7a919064bbeba8c

  • SHA1

    8130b46634aec48c54c1bb6d06582f92746adc5b

  • SHA256

    12bf0ffad64011452112e5825f9161e6b79479c39e0f9b15daad5937d43f8f0b

  • SHA512

    cdd4afdfb677f029bd71ea52a21808e16369ad9332d1bd8e50b3ebf1b33cdeaf9cb4b3bed063975a9fedac66c991f8941d8413802e23ea35d1b6142f88233758

  • SSDEEP

    3072:4tZYmy5Jk7dRz1iASs/rYo752KsCp7a/EliKxfJkxbPL1dypZQaSJVr+1O/:eYmy5JmRz1iAJByGxw1dy7QaSDrY

Score
7/10

Malware Config

Targets

    • Target

      12bf0ffad64011452112e5825f9161e6b79479c39e0f9b15daad5937d43f8f0b

    • Size

      456KB

    • MD5

      059af5b26ac60c50f7a919064bbeba8c

    • SHA1

      8130b46634aec48c54c1bb6d06582f92746adc5b

    • SHA256

      12bf0ffad64011452112e5825f9161e6b79479c39e0f9b15daad5937d43f8f0b

    • SHA512

      cdd4afdfb677f029bd71ea52a21808e16369ad9332d1bd8e50b3ebf1b33cdeaf9cb4b3bed063975a9fedac66c991f8941d8413802e23ea35d1b6142f88233758

    • SSDEEP

      3072:4tZYmy5Jk7dRz1iASs/rYo752KsCp7a/EliKxfJkxbPL1dypZQaSJVr+1O/:eYmy5JmRz1iAJByGxw1dy7QaSDrY

    Score
    7/10

    • Deletes itself

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

2
T1082

Remote System Discovery

1
T1018

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks