6b198ef17c5b52b52cb68f437c9e8238a0d225239279837176ef54b646ea7644 | Triage

Sharing

General

Target

6b198ef17c5b52b52cb68f437c9e8238a0d225239279837176ef54b646ea7644
Size

12.6MB
Sample

230818-x2z2caee8y
MD5

311d9e31d3a7596ddf1f870dd531834d
SHA1

ba53764381cc32354b94aa4c6bbc0396a2bec11e
SHA256

6b198ef17c5b52b52cb68f437c9e8238a0d225239279837176ef54b646ea7644
SHA512

5eb269ee2a2fd19676e45989e299913ccfafc23895df943f4a6758fb026adf19a267bdda38ff442515e84398e35fdb6fdbb7f2ff301e4b33a5122318bb7bd1e6
SSDEEP

196608:EJYTgM7tWqt/06024m7zoxrCwrV0l51J2tyj02fii1J4zSlYYvHSPus/d:rTiV2p7zoxrTCJJx02fp4WuGsV

Score

8^/10

Malware Config

Targets

- Target
  
  6b198ef17c5b52b52cb68f437c9e8238a0d225239279837176ef54b646ea7644
- Size
  
  12.6MB
- MD5
  
  311d9e31d3a7596ddf1f870dd531834d
- SHA1
  
  ba53764381cc32354b94aa4c6bbc0396a2bec11e
- SHA256
  
  6b198ef17c5b52b52cb68f437c9e8238a0d225239279837176ef54b646ea7644
- SHA512
  
  5eb269ee2a2fd19676e45989e299913ccfafc23895df943f4a6758fb026adf19a267bdda38ff442515e84398e35fdb6fdbb7f2ff301e4b33a5122318bb7bd1e6
- SSDEEP
  
  196608:EJYTgM7tWqt/06024m7zoxrCwrV0l51J2tyj02fii1J4zSlYYvHSPus/d:rTiV2p7zoxrTCJJx02fp4WuGsV
Score

8^/10
- Drops file in Drivers directory
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2