cab455be676d927a70dd7e7821a9c7a9c6fbf99eef23cd784cfca4ed8a2bf15c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

WhiteClock-7.exe.7z
Size

20.9MB
Sample

230702-hp1psaah59
MD5

3933e615d94c8372fae03c83a1a6eae2
SHA1

0d0456223c5cd90c6c439c46bf69029431931316
SHA256

cab455be676d927a70dd7e7821a9c7a9c6fbf99eef23cd784cfca4ed8a2bf15c
SHA512

04d401362dce1013b332bd41926add3dd58c2002711ee3b31411f9337523ad67140dea818e3df99887f14c62e3952453abb5c3bdbda0b2399f4e8e1f49799836
SSDEEP

393216:Gg9x0PQy41+JZ+6qfwNlNcgpgRxZejUBxq6TPio:Gy04X1eFywNl1pgRxIjG9Pio

Score

6^/10

Malware Config

Targets

- Target
  
  WhiteClock-7.exe
- Size
  
  25.9MB
- MD5
  
  82d1f7c60f69ab61e6d05a3a42fc5015
- SHA1
  
  96a6230ea47a8d07fe0bd906c2d795ff3bbf9a63
- SHA256
  
  47cbe3756ff1fd9b0af43c434830ee25f0c562f3b899a75db36828d6fa0acf16
- SHA512
  
  229c12da8d4ae34602afe00aca5e6eacc95adf8bb636c8de43cf665ce27b060b3cc10a4997276b2464848cf53b63c2b33227779372e379e648f53ea2f4b14c2c
- SSDEEP
  
  393216:GL+XQ900WzU+kWklnSW/27nkYScQHwg1EhoOLVVMPSFmoIyWi8Pg:GLUQEU+CSW/0qVQAZ7PSIoLL
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2