71a1f1a609212631767be03a5182dc02525cf2e780c57b157df4518e8875abe8 | Triage

Sharing

General

Target

d6331c73871699d9cbffe543ce7c4aab.zip
Size

14.1MB
Sample

230524-s9xhzadf8y
MD5

d6331c73871699d9cbffe543ce7c4aab
SHA1

b77010d7c77f4e45e576523b7037407485a1007c
SHA256

71a1f1a609212631767be03a5182dc02525cf2e780c57b157df4518e8875abe8
SHA512

5f343618e660eaa3c43bdf3f1eb0ce779337842a02ba82e087e3c645af565d0e7d27d7671a5975aa8f741e345b78bfb4f5643f8b5c8b0859d70c1b3c639ff909
SSDEEP

393216:1LDpiVBTnW0uBj+JwbH5cV3xGOLM7kQqM2pFvi+8Q:NQVBTnWF0JwLEMOLMoQp2fim

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  Nota_Eletronica_09435345.msi
- Size
  
  14.8MB
- MD5
  
  89538d7266f41f4bd3428e305ec01af3
- SHA1
  
  bada42c7a4927339533672d7904b4ddfcb708e3f
- SHA256
  
  386186bbe54c21daebfb53d60f8cec81ca270db36b6beda0743bf33212a6fd82
- SHA512
  
  d40fc65a576c1b63d9b04db3e94eb745282b25ad897ed41f6fe5d8893501989b41d1b7e92ab45639871862e97fba482d48f56d402649e10fee0f3fa19c22b54d
- SSDEEP
  
  393216:32v77AHfPrWaYFT6JCLnHOT3R44hqpA0k663bhoIe:UgHfPrW7AJCDCS4hq60v6do
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2