93e25d10a02c8c0c68d23c7887aa83cfd4de428f52583787f9f829cc22f08159 | Triage

Sharing

General

Target

tmp
Size

3.0MB
Sample

230416-m6qy5ahh75
MD5

575f0a5d9e2f34752d16004724e490b7
SHA1

48af1d5f46ffddbceb2c626bcd0417840a2ca8d4
SHA256

93e25d10a02c8c0c68d23c7887aa83cfd4de428f52583787f9f829cc22f08159
SHA512

19771087ed80e8b613ea647457a7d4186748aad28a587e654250b2479c658633f56f417ff8a6e048db77d21b57502102cee6554cc8ac297afaaa29101f2a04da
SSDEEP

49152:1NMhE2sHLkzhdM3bA5h/r9p5cSFIPdrdFIKs5IzCegTHYjr+Rln2vyprCUjaBNc:WM0t9p5pM1s2ibYX+Rl2Du

Score

6^/10

Malware Config

Targets

- Target
  
  tmp
- Size
  
  3.0MB
- MD5
  
  575f0a5d9e2f34752d16004724e490b7
- SHA1
  
  48af1d5f46ffddbceb2c626bcd0417840a2ca8d4
- SHA256
  
  93e25d10a02c8c0c68d23c7887aa83cfd4de428f52583787f9f829cc22f08159
- SHA512
  
  19771087ed80e8b613ea647457a7d4186748aad28a587e654250b2479c658633f56f417ff8a6e048db77d21b57502102cee6554cc8ac297afaaa29101f2a04da
- SSDEEP
  
  49152:1NMhE2sHLkzhdM3bA5h/r9p5cSFIPdrdFIKs5IzCegTHYjr+Rln2vyprCUjaBNc:WM0t9p5pM1s2ibYX+Rl2Du
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2