a5453e8bdfb74c89ae3df7d85fffb21367d09b398a5474af0d44d47ae7f8c2cf | Triage

Submit
Reports

Overview

overview

8

Static

static

a5453e8bdf...cf.exe

windows7-x64

8

a5453e8bdf...cf.exe

windows10-2004-x64

Sharing

General

Target

a5453e8bdfb74c89ae3df7d85fffb21367d09b398a5474af0d44d47ae7f8c2cf
Size

751KB
Sample

221124-arqnlafb54
MD5

01556b65dee807dead61c88aa71c0efc
SHA1

629ef498b2fd362442b2b232a940860d94e38311
SHA256

a5453e8bdfb74c89ae3df7d85fffb21367d09b398a5474af0d44d47ae7f8c2cf
SHA512

0eb0d9a8543e23815efc0933fa24ad72cd410c7091cb89a7a7cbcd6f02d5b2aa699676b77afd94028dad3e83de5b77bae9e29fe212b4079316bb76ac6fb33818
SSDEEP

12288:53Nc6QXqw9MgKnxYaGu5jji2YQ6MpzUK1bOnnCOazb4gR8wmq3/PFdTyVD:53NcDKnxYaXJi2Y3MpbwnCvzb4cbmYdU

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

a5453e8bdfb74c89ae3df7d85fffb21367d09b398a5474af0d44d47ae7f8c2cf.exe

Resource

win7-20221111-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

a5453e8bdfb74c89ae3df7d85fffb21367d09b398a5474af0d44d47ae7f8c2cf.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  a5453e8bdfb74c89ae3df7d85fffb21367d09b398a5474af0d44d47ae7f8c2cf
- Size
  
  751KB
- MD5
  
  01556b65dee807dead61c88aa71c0efc
- SHA1
  
  629ef498b2fd362442b2b232a940860d94e38311
- SHA256
  
  a5453e8bdfb74c89ae3df7d85fffb21367d09b398a5474af0d44d47ae7f8c2cf
- SHA512
  
  0eb0d9a8543e23815efc0933fa24ad72cd410c7091cb89a7a7cbcd6f02d5b2aa699676b77afd94028dad3e83de5b77bae9e29fe212b4079316bb76ac6fb33818
- SSDEEP
  
  12288:53Nc6QXqw9MgKnxYaGu5jji2YQ6MpzUK1bOnnCOazb4gR8wmq3/PFdTyVD:53NcDKnxYaXJi2Y3MpbwnCvzb4cbmYdU
Score

8^/10
- Drops file in Drivers directory
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy