07a9f278635b91478ced01be1f2818b924b436f1d2e2867c687b7a92b6e702e0 | Triage

Sharing

General

Target

nvim-win64.msi
Size

39.8MB
Sample

230805-dj36hafd39
MD5

f256936ddc4d9127861e6205498a384c
SHA1

e8231e931847b092a10622487757bce540e1dadc
SHA256

07a9f278635b91478ced01be1f2818b924b436f1d2e2867c687b7a92b6e702e0
SHA512

6317475164c45eec2a8e6bc99716128ddef168b04087887d0b859617ea5911d5b686f63227f4ef4f7d21e353f40f0585f3e93589fbeccd7a14cfdf2c9e120e5f
SSDEEP

786432:IRm76RfBO0BGNfwkB4r3h79A4PwPh543RC0S0/JkitDUksLWG7M4LN:4TfB4NfwkB4N75Ef+RD6ixILWG7M4LN

Score

7^/10

Malware Config

Targets

- Target
  
  nvim-win64.msi
- Size
  
  39.8MB
- MD5
  
  f256936ddc4d9127861e6205498a384c
- SHA1
  
  e8231e931847b092a10622487757bce540e1dadc
- SHA256
  
  07a9f278635b91478ced01be1f2818b924b436f1d2e2867c687b7a92b6e702e0
- SHA512
  
  6317475164c45eec2a8e6bc99716128ddef168b04087887d0b859617ea5911d5b686f63227f4ef4f7d21e353f40f0585f3e93589fbeccd7a14cfdf2c9e120e5f
- SSDEEP
  
  786432:IRm76RfBO0BGNfwkB4r3h79A4PwPh543RC0S0/JkitDUksLWG7M4LN:4TfB4NfwkB4N75Ef+RD6ixILWG7M4LN
Score

7^/10
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2