45db0f018bc56d4b21174ac0c7ee3957c2d4d6b2aad4583d3a9fa894f90b3e38 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45db0f018bc56d4b21174ac0c7ee3957c2d4d6b2aad4583d3a9fa894f90b3e38
Size

10.4MB
Sample

230816-emnewsha6t
MD5

3c38b13a0e7dae80caf79fb91a92ea32
SHA1

d28ff30afe1b6f1d9c431f3a61dc753fbc397654
SHA256

45db0f018bc56d4b21174ac0c7ee3957c2d4d6b2aad4583d3a9fa894f90b3e38
SHA512

bf42af7bfe07e0b0c9dd7524f0a1fa37f596a68f55e1dc186899742a83b27b7a675c4c9046d689ed26d3ef210300e203dc93d87239761e5b0b7264ad2626c814
SSDEEP

196608:jpPaI0j0GGXh1toX6qVJbEFm7eEfXIvCegxuxBLxXKzUMvYySFDzVXEtRr:jpzxGgdoHEFmyEfXG+xuxFxcUpyuDxEX

Score

7^/10

Malware Config

Targets

- Target
  
  45db0f018bc56d4b21174ac0c7ee3957c2d4d6b2aad4583d3a9fa894f90b3e38
- Size
  
  10.4MB
- MD5
  
  3c38b13a0e7dae80caf79fb91a92ea32
- SHA1
  
  d28ff30afe1b6f1d9c431f3a61dc753fbc397654
- SHA256
  
  45db0f018bc56d4b21174ac0c7ee3957c2d4d6b2aad4583d3a9fa894f90b3e38
- SHA512
  
  bf42af7bfe07e0b0c9dd7524f0a1fa37f596a68f55e1dc186899742a83b27b7a675c4c9046d689ed26d3ef210300e203dc93d87239761e5b0b7264ad2626c814
- SSDEEP
  
  196608:jpPaI0j0GGXh1toX6qVJbEFm7eEfXIvCegxuxBLxXKzUMvYySFDzVXEtRr:jpzxGgdoHEFmyEfXG+xuxFxcUpyuDxEX
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2