0a52806ac671b6baf3f6bb0acc1fa45edb9fdcc5908f7eabf7acb0f134e50219 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0a52806ac671b6baf3f6bb0acc1fa45edb9fdcc5908f7eabf7acb0f134e50219
Size

122KB
Sample

230922-camaysbf6y
MD5

4686489657c8cef90d19fc6a2aa2aaf0
SHA1

bfa5cfd2f9044ddcbfb22d81faa37fcc877ea2f7
SHA256

0a52806ac671b6baf3f6bb0acc1fa45edb9fdcc5908f7eabf7acb0f134e50219
SHA512

e26f90a28c176bbc37c33aaed3d1e55ecff85ec4addea9e1b4420b062d2d2ed8a139384ffb3d8d83eafdd4ee28983b223bd6846855327a565a345ff9bd24b395
SSDEEP

3072:6ftffjmNSoFHzg2I0PpPNX6RLXWertCQyyNU:6VfjmNvZzhPpPNq6QyH

Score

7^/10

Malware Config

Targets

- Target
  
  0a52806ac671b6baf3f6bb0acc1fa45edb9fdcc5908f7eabf7acb0f134e50219
- Size
  
  122KB
- MD5
  
  4686489657c8cef90d19fc6a2aa2aaf0
- SHA1
  
  bfa5cfd2f9044ddcbfb22d81faa37fcc877ea2f7
- SHA256
  
  0a52806ac671b6baf3f6bb0acc1fa45edb9fdcc5908f7eabf7acb0f134e50219
- SHA512
  
  e26f90a28c176bbc37c33aaed3d1e55ecff85ec4addea9e1b4420b062d2d2ed8a139384ffb3d8d83eafdd4ee28983b223bd6846855327a565a345ff9bd24b395
- SSDEEP
  
  3072:6ftffjmNSoFHzg2I0PpPNX6RLXWertCQyyNU:6VfjmNvZzhPpPNq6QyH
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2