fa0b780f13f9e6f0813f0295d88e944f0229cf2668b20b399f82678ef94369b4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-26_a7526b0f9ac3b101d51053957f11b994_mafia_JC.exe
Size

2.8MB
Sample

231011-gl741sfc35
MD5

a7526b0f9ac3b101d51053957f11b994
SHA1

a521a54db00b3e275b70863797b5ce421f929ff8
SHA256

fa0b780f13f9e6f0813f0295d88e944f0229cf2668b20b399f82678ef94369b4
SHA512

a7a24a70e51ef3e16f7fedb47d3efdfa79f95cf024f472463e5c870c0a5a3e4430738f6d7e303d4902c5e6d000ad0350ebd9e13409cbe26aa03194f305966bc7
SSDEEP

49152:KYzV9colMmavuainElgx9VJzxY/ufB48duiXdqDS20gv/6x7Phn6XLBnw1AJyMpN:f9cUMmavuaiyu9VJ2/ufB1uiXIDS20gF

Score

7^/10

Malware Config

Targets

- Target
  
  2023-08-26_a7526b0f9ac3b101d51053957f11b994_mafia_JC.exe
- Size
  
  2.8MB
- MD5
  
  a7526b0f9ac3b101d51053957f11b994
- SHA1
  
  a521a54db00b3e275b70863797b5ce421f929ff8
- SHA256
  
  fa0b780f13f9e6f0813f0295d88e944f0229cf2668b20b399f82678ef94369b4
- SHA512
  
  a7a24a70e51ef3e16f7fedb47d3efdfa79f95cf024f472463e5c870c0a5a3e4430738f6d7e303d4902c5e6d000ad0350ebd9e13409cbe26aa03194f305966bc7
- SSDEEP
  
  49152:KYzV9colMmavuainElgx9VJzxY/ufB48duiXdqDS20gv/6x7Phn6XLBnw1AJyMpN:f9cUMmavuaiyu9VJ2/ufB1uiXIDS20gF
Score

7^/10
- Executes dropped EXE
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2