73f88416fd93f440b124192ca7ce202244bcb11ade88acd6cc4a8d417719d921 | Triage

Sharing

General

Target

73f88416fd93f440b124192ca7ce202244bcb11ade88acd6cc4a8d417719d921
Size

2.2MB
Sample

230918-cjz86seb71
MD5

3f0d37881a8c7af5d7c98c89130c6291
SHA1

a7f4347e9ee3f2c6baf954356fe0f19e5330a120
SHA256

73f88416fd93f440b124192ca7ce202244bcb11ade88acd6cc4a8d417719d921
SHA512

4e91dfb8d2e2d981f55518fb03391f88e076c16fffaa3a84e0cd973e832f077c8d0d1f65d952b3a5d4bc3a01726d92f688fc7e4bf0d0e6cd9e2b896b1093d64b
SSDEEP

49152:GmgyrMB83RZiIXgFPtJg3MVn2u7wB4z9b5ONRn:cyyKRZiIuW3MVn2qiQ5sNt

Score

6^/10

Malware Config

Targets

- Target
  
  73f88416fd93f440b124192ca7ce202244bcb11ade88acd6cc4a8d417719d921
- Size
  
  2.2MB
- MD5
  
  3f0d37881a8c7af5d7c98c89130c6291
- SHA1
  
  a7f4347e9ee3f2c6baf954356fe0f19e5330a120
- SHA256
  
  73f88416fd93f440b124192ca7ce202244bcb11ade88acd6cc4a8d417719d921
- SHA512
  
  4e91dfb8d2e2d981f55518fb03391f88e076c16fffaa3a84e0cd973e832f077c8d0d1f65d952b3a5d4bc3a01726d92f688fc7e4bf0d0e6cd9e2b896b1093d64b
- SSDEEP
  
  49152:GmgyrMB83RZiIXgFPtJg3MVn2u7wB4z9b5ONRn:cyyKRZiIuW3MVn2qiQ5sNt
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2