85dca62f39541924caf7919f4ebed7d2c49840b1051d1ee46b43cce6f7c4e194 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

85dca62f39541924caf7919f4ebed7d2c49840b1051d1ee46b43cce6f7c4e194
Size

160KB
Sample

221201-1r9dtahd4w
MD5

ebebdb66f163682fec3c93f47f49ab85
SHA1

033f8b92a4ac162cdb063bc9df1989f3a2bbcb21
SHA256

85dca62f39541924caf7919f4ebed7d2c49840b1051d1ee46b43cce6f7c4e194
SHA512

2cb3148952e9bc50298cddd0c27ec965539fe29ac7022b25887adab3ac56e3ec0aa5c27148aab78bc53765057443c334a996f6fb67464de524fadb7c227d66fb
SSDEEP

3072:zrLld1GXrC6vnELblI8FsG8n2S2tEN5+EzOddrq2z3NYYAwpCx5I1zhudr:zrL6H8bTB7S2tYD4N3NY8oq1zhut

Score

8^/10

Malware Config

Targets

- Target
  
  85dca62f39541924caf7919f4ebed7d2c49840b1051d1ee46b43cce6f7c4e194
- Size
  
  160KB
- MD5
  
  ebebdb66f163682fec3c93f47f49ab85
- SHA1
  
  033f8b92a4ac162cdb063bc9df1989f3a2bbcb21
- SHA256
  
  85dca62f39541924caf7919f4ebed7d2c49840b1051d1ee46b43cce6f7c4e194
- SHA512
  
  2cb3148952e9bc50298cddd0c27ec965539fe29ac7022b25887adab3ac56e3ec0aa5c27148aab78bc53765057443c334a996f6fb67464de524fadb7c227d66fb
- SSDEEP
  
  3072:zrLld1GXrC6vnELblI8FsG8n2S2tEN5+EzOddrq2z3NYYAwpCx5I1zhudr:zrL6H8bTB7S2tYD4N3NY8oq1zhut
Score

8^/10
- Executes dropped EXE
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2