Overview

overview

8

Static

static

51b6f6d7cc...6c.exe

windows7-x64

8

51b6f6d7cc...6c.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    51b6f6d7cc053e21a13cd9e0832de51a65fbdc5d527737082b7b1b12417f936c

  • Size

    444KB

  • Sample

    221123-xhbjmsfa66

  • MD5

    56e9b0fbe41b8a3e96fb28e02ca96a70

  • SHA1

    bc04ac2c58f805b0c97b07076d1de4e0b981a1c3

  • SHA256

    51b6f6d7cc053e21a13cd9e0832de51a65fbdc5d527737082b7b1b12417f936c

  • SHA512

    519dbab949a697d3df3671781d90ab7eac5d726dd56c73a737290d7dff4f52500c27c8ecfa1feb712216b99192183ef4f307b0c61b533de9bfb1edae9259aad6

  • SSDEEP

    12288:PFMeCb6yOIKgUnqN9ugSNkvm9f+MgvLwabghCE2SN7YDansz6J7yCXjmZfMc3edD:PXOSN7YDansWJ7yimS

Score
8/10

Malware Config

Targets

    • Target

      51b6f6d7cc053e21a13cd9e0832de51a65fbdc5d527737082b7b1b12417f936c

    • Size

      444KB

    • MD5

      56e9b0fbe41b8a3e96fb28e02ca96a70

    • SHA1

      bc04ac2c58f805b0c97b07076d1de4e0b981a1c3

    • SHA256

      51b6f6d7cc053e21a13cd9e0832de51a65fbdc5d527737082b7b1b12417f936c

    • SHA512

      519dbab949a697d3df3671781d90ab7eac5d726dd56c73a737290d7dff4f52500c27c8ecfa1feb712216b99192183ef4f307b0c61b533de9bfb1edae9259aad6

    • SSDEEP

      12288:PFMeCb6yOIKgUnqN9ugSNkvm9f+MgvLwabghCE2SN7YDansz6J7yCXjmZfMc3edD:PXOSN7YDansWJ7yimS

    Score
    8/10

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Drops startup file

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks