42c090c4ee96129974f84fd9d45033c7bda3e31dc66f2516e4ad45b7fce7c57e | Triage

Sharing

General

Target

42c090c4ee96129974f84fd9d45033c7bda3e31dc66f2516e4ad45b7fce7c57e
Size

460KB
Sample

230807-cr2f7sec61
MD5

948eb6df6f86f441697c1fa4f4fef9d7
SHA1

575c93da03208588fc0c7d2fb3a8a3a86e5987b3
SHA256

42c090c4ee96129974f84fd9d45033c7bda3e31dc66f2516e4ad45b7fce7c57e
SHA512

3b87ca569c2dae57525662dc7a1f5d86245b600ab960b5d5957239438516b2dfde2f7fd3c4b2e5d1cfebd85dc8fb5cf5f12af3e1033f9b106a38a76b3a7417f5
SSDEEP

12288:j+Ycd+ah3fOD/kJVFGekWWAw3BtJxl7LIUshDHGbJ2lKuLruePtGmdUUK2mFZ/Rr:9cd+ahvOD/kJLGekWWAw3BtJxl7LIUsR

Score

7^/10

Malware Config

Targets

- Target
  
  42c090c4ee96129974f84fd9d45033c7bda3e31dc66f2516e4ad45b7fce7c57e
- Size
  
  460KB
- MD5
  
  948eb6df6f86f441697c1fa4f4fef9d7
- SHA1
  
  575c93da03208588fc0c7d2fb3a8a3a86e5987b3
- SHA256
  
  42c090c4ee96129974f84fd9d45033c7bda3e31dc66f2516e4ad45b7fce7c57e
- SHA512
  
  3b87ca569c2dae57525662dc7a1f5d86245b600ab960b5d5957239438516b2dfde2f7fd3c4b2e5d1cfebd85dc8fb5cf5f12af3e1033f9b106a38a76b3a7417f5
- SSDEEP
  
  12288:j+Ycd+ah3fOD/kJVFGekWWAw3BtJxl7LIUshDHGbJ2lKuLruePtGmdUUK2mFZ/Rr:9cd+ahvOD/kJLGekWWAw3BtJxl7LIUsR
Score

7^/10
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2