bc0a0f0534531621033939cbd043a6bcf1d38c193cfd5ea42344abdf0dfab574 | Triage

Sharing

General

Target

Zamok Loader-15.0.93.msi
Size

2.3MB
Sample

230720-kw8p3sfa3t
MD5

9c61d1a4c4f1c33842317bfedbac1554
SHA1

a507708a7a4bb1a070e865336bbb39d2bf837000
SHA256

bc0a0f0534531621033939cbd043a6bcf1d38c193cfd5ea42344abdf0dfab574
SHA512

99293b425fc1d34340b648589beff325817404648200ddb499a0c178208912cdf69ed9222b6eba42a503941e6fb0d20eff7bf48e8eb5d7d7474e3f0c09785724
SSDEEP

49152:i13Y06w1MmjLRdJ7bQYbsrAqyX4ebpuyrOC9rR8Gm3DR2wqL/5cchojH2VACP4AI:i51McLRP3ssqypbpHOC9rR8GmowqL/5

Score

7^/10

Malware Config

Targets

- Target
  
  Zamok Loader-15.0.93.msi
- Size
  
  2.3MB
- MD5
  
  9c61d1a4c4f1c33842317bfedbac1554
- SHA1
  
  a507708a7a4bb1a070e865336bbb39d2bf837000
- SHA256
  
  bc0a0f0534531621033939cbd043a6bcf1d38c193cfd5ea42344abdf0dfab574
- SHA512
  
  99293b425fc1d34340b648589beff325817404648200ddb499a0c178208912cdf69ed9222b6eba42a503941e6fb0d20eff7bf48e8eb5d7d7474e3f0c09785724
- SSDEEP
  
  49152:i13Y06w1MmjLRdJ7bQYbsrAqyX4ebpuyrOC9rR8Gm3DR2wqL/5cchojH2VACP4AI:i51McLRP3ssqypbpHOC9rR8GmowqL/5
Score

7^/10
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2