16197c782fd800bed43b302000fe3f8a9e4f500bcbe5ecc83d63c396261bcc8f | Triage

Sharing

General

Target

16197c782fd800bed43b302000fe3f8a9e4f500bcbe5ecc83d63c396261bcc8f
Size

41KB
Sample

230828-ejn71sfd93
MD5

4626379585dea573d8474c80c39d824b
SHA1

6d35c00056b582d724da219e13f43757f4b6e899
SHA256

16197c782fd800bed43b302000fe3f8a9e4f500bcbe5ecc83d63c396261bcc8f
SHA512

3ed9f01a2558ecdb47cf1b38b9ca3693e6e14c0b78f21b848b98e05b71ad3f25f64255acb8c3c6476edf7c7e1f00add0c0c6d295cf72c11ea63efcef7850cbb6
SSDEEP

768:pJq16GVRu1yK9fMnJG2V9dHS8HI64LMP1wy:pJM3SHuJV9NUtLMP1wy

Score

7^/10

Malware Config

Targets

- Target
  
  16197c782fd800bed43b302000fe3f8a9e4f500bcbe5ecc83d63c396261bcc8f
- Size
  
  41KB
- MD5
  
  4626379585dea573d8474c80c39d824b
- SHA1
  
  6d35c00056b582d724da219e13f43757f4b6e899
- SHA256
  
  16197c782fd800bed43b302000fe3f8a9e4f500bcbe5ecc83d63c396261bcc8f
- SHA512
  
  3ed9f01a2558ecdb47cf1b38b9ca3693e6e14c0b78f21b848b98e05b71ad3f25f64255acb8c3c6476edf7c7e1f00add0c0c6d295cf72c11ea63efcef7850cbb6
- SSDEEP
  
  768:pJq16GVRu1yK9fMnJG2V9dHS8HI64LMP1wy:pJM3SHuJV9NUtLMP1wy
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2