9ac5f2706cee09c809a4bbd6959021d4974aa5b677af05bd22e4c0d439ee47a8 | Triage

Sharing

General

Target

tmp
Size

3.0MB
Sample

230318-mxzvnsea71
MD5

b352cf5548ef51387d9e4a55073853ea
SHA1

117e972c1ffa3d7c3ddf157569d8d5155335afd4
SHA256

9ac5f2706cee09c809a4bbd6959021d4974aa5b677af05bd22e4c0d439ee47a8
SHA512

8949ae81cb32f31f0ff9543a60ae14879d53e7cbb53741dd5ba7f25c951c143149ab2dd4c1f0af13540b05ed6e8d07b1d3138588c45ee41c071459777edd4e05
SSDEEP

49152:lNDnB3dQQ/Fv4Nwd8G0pteuhG7NKj+g1c8aSBBNoP0lpiUT9S41NUZEnk2O:lNrFv4F3QSGMSg1Pa+X8U9Uqnk2O

Score

6^/10

Malware Config

Targets

- Target
  
  tmp
- Size
  
  3.0MB
- MD5
  
  b352cf5548ef51387d9e4a55073853ea
- SHA1
  
  117e972c1ffa3d7c3ddf157569d8d5155335afd4
- SHA256
  
  9ac5f2706cee09c809a4bbd6959021d4974aa5b677af05bd22e4c0d439ee47a8
- SHA512
  
  8949ae81cb32f31f0ff9543a60ae14879d53e7cbb53741dd5ba7f25c951c143149ab2dd4c1f0af13540b05ed6e8d07b1d3138588c45ee41c071459777edd4e05
- SSDEEP
  
  49152:lNDnB3dQQ/Fv4Nwd8G0pteuhG7NKj+g1c8aSBBNoP0lpiUT9S41NUZEnk2O:lNrFv4F3QSGMSg1Pa+X8U9Uqnk2O
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2