d0b32d0a621cbd018b5f644ac2d1e6ff933cb97795bdfc5d63583eaed8252041 | Triage

Sharing

General

Target

sqlncli_x86.msi
Size

3.4MB
Sample

230615-q24wzahe2w
MD5

96e7b2511bf58767dc5ad81e673f68c1
SHA1

50a74c46e99949ad5ddee6b6fdf48b4612d943a6
SHA256

d0b32d0a621cbd018b5f644ac2d1e6ff933cb97795bdfc5d63583eaed8252041
SHA512

ae9fc68687d0eb999a0b4da03d355f7033f5b637dab23c79748966e2598bf2ba098d618f589d0affd16029d11513f06f4de12f12bac1db64a3457655869987c2
SSDEEP

98304:4oD2mNDX6aU5wZunDNH2u2mcbthCuLZx5H3:NCmNej5U6DNYmSdxX

Score

6^/10

Malware Config

Targets

- Target
  
  sqlncli_x86.msi
- Size
  
  3.4MB
- MD5
  
  96e7b2511bf58767dc5ad81e673f68c1
- SHA1
  
  50a74c46e99949ad5ddee6b6fdf48b4612d943a6
- SHA256
  
  d0b32d0a621cbd018b5f644ac2d1e6ff933cb97795bdfc5d63583eaed8252041
- SHA512
  
  ae9fc68687d0eb999a0b4da03d355f7033f5b637dab23c79748966e2598bf2ba098d618f589d0affd16029d11513f06f4de12f12bac1db64a3457655869987c2
- SSDEEP
  
  98304:4oD2mNDX6aU5wZunDNH2u2mcbthCuLZx5H3:NCmNej5U6DNYmSdxX
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2