1ea0f9780257a0b172b505888106f54e0cc8be69e713753827143d245426af18 | Triage

Sharing

General

Target

1ea0f9780257a0b172b505888106f54e0cc8be69e713753827143d245426af18
Size

180KB
Sample

230930-rtywesee76
MD5

80a11cd2aeb53af45f78af93e0cd1d33
SHA1

65367038e9d89a113b1a1c1dd4da42d8930e6951
SHA256

1ea0f9780257a0b172b505888106f54e0cc8be69e713753827143d245426af18
SHA512

b1f9aaad935d1493f2a5d5b145c399e476cfe5de17cf81ea6d56d3008ab60ae1cf6305be0dfd6c294ba038776f2959bd7624aa7934b68c81cf9980d0c4a8f6fd
SSDEEP

3072:5ftffjmNs9CEAGxiVRh+h85ufeKg0eylJ6YSXWkvDObXt4O:RVfjmNUxiVRh+i4Wt0ey/6YSXAmO

Score

7^/10

Malware Config

Targets

- Target
  
  1ea0f9780257a0b172b505888106f54e0cc8be69e713753827143d245426af18
- Size
  
  180KB
- MD5
  
  80a11cd2aeb53af45f78af93e0cd1d33
- SHA1
  
  65367038e9d89a113b1a1c1dd4da42d8930e6951
- SHA256
  
  1ea0f9780257a0b172b505888106f54e0cc8be69e713753827143d245426af18
- SHA512
  
  b1f9aaad935d1493f2a5d5b145c399e476cfe5de17cf81ea6d56d3008ab60ae1cf6305be0dfd6c294ba038776f2959bd7624aa7934b68c81cf9980d0c4a8f6fd
- SSDEEP
  
  3072:5ftffjmNs9CEAGxiVRh+h85ufeKg0eylJ6YSXWkvDObXt4O:RVfjmNUxiVRh+i4Wt0ey/6YSXAmO
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2