b3d7c8a1f9fc5037755860266ee9b2adac1f3df340fea22b3d824f704c6d5cea | Triage

Sharing

General

Target

b3d7c8a1f9fc5037755860266ee9b2adac1f3df340fea22b3d824f704c6d5cea
Size

241KB
Sample

221202-xn12gshd4x
MD5

6b6becfc05bf935d438ce0c747b6e37f
SHA1

7fa09ca77f51d1599229f1bec3f231e61df88faf
SHA256

b3d7c8a1f9fc5037755860266ee9b2adac1f3df340fea22b3d824f704c6d5cea
SHA512

763d4dff3d2fa1734b655c2c408f416382a9a02ad754ec04489dc62b66ae8bfea26d8c458b74eaf0fcf5f58f926ae8e2b165c141927932c6fe79cf0dd5a52d3f
SSDEEP

3072:3biet78jxlJnttl6RBavJ92OGwUnOr9yW1vZRgFZRgqLNGbiet78U:LietuxlllQQ92OGbOr718kiett

Score

8^/10

Malware Config

Targets

- Target
  
  b3d7c8a1f9fc5037755860266ee9b2adac1f3df340fea22b3d824f704c6d5cea
- Size
  
  241KB
- MD5
  
  6b6becfc05bf935d438ce0c747b6e37f
- SHA1
  
  7fa09ca77f51d1599229f1bec3f231e61df88faf
- SHA256
  
  b3d7c8a1f9fc5037755860266ee9b2adac1f3df340fea22b3d824f704c6d5cea
- SHA512
  
  763d4dff3d2fa1734b655c2c408f416382a9a02ad754ec04489dc62b66ae8bfea26d8c458b74eaf0fcf5f58f926ae8e2b165c141927932c6fe79cf0dd5a52d3f
- SSDEEP
  
  3072:3biet78jxlJnttl6RBavJ92OGwUnOr9yW1vZRgFZRgqLNGbiet78U:LietuxlllQQ92OGbOr718kiett
Score

8^/10
- Drops file in Drivers directory
- Executes dropped EXE
- Drops startup file
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2