e701b01982e3126f509a19534dbf689dd8c3ab9375779c02af14163d3071f51e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e701b01982e3126f509a19534dbf689dd8c3ab9375779c02af14163d3071f51e
Size

592KB
Sample

230824-m9nm6scb43
MD5

1fb83d9a6b04ba0249a93926b38a8e7a
SHA1

740019acb1838a9ef356983af091fd99cca363ee
SHA256

e701b01982e3126f509a19534dbf689dd8c3ab9375779c02af14163d3071f51e
SHA512

b64d5095dbd12ab8f297614a4c295eb4ba2eac16cddaec96468f902f4b4bf84347e5df6cbde7829d00c69a5700537638a69c71cb9f96e99500ad8dcbc28d6e0c
SSDEEP

12288:Rs2ZtaVculCPRVRoo7NpiMovxRncZaECuK2UnraOUMgiGacXA3az2Kk1i3TL3/Ml:Rs2PawRvPiJDKaECmUnrZWXeaz2KeOf6

Score

6^/10

Malware Config

Targets

- Target
  
  深蓝群Ping.exe
- Size
  
  1.3MB
- MD5
  
  5ad9e1aab50433e8c5b15041ac7b587f
- SHA1
  
  1f8eebd2bfb5d36cb5b4e611a5b07df0da86fef2
- SHA256
  
  30942659f9e0e7e67e373485f2a5865a057415f9ff36e7ec93f4575743b11f54
- SHA512
  
  72811748896015b2639b7851f5670cfc64313bb9c794ccefeb05ee83a0fe68c48a4fb2116074f03a3951e1914a0c2943c787169d9475f69781f50021c38828f8
- SSDEEP
  
  24576:i/43lEJmN3xv4hsN48N1zIpJAtHRjy4DunmjiFhKYrS8:iw9VxxN48NImtHd6BuB8
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2