9abbca071714ee9efbf6e3beebb7427822c4359836b28204583af5e24f4b8046 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEBULA OSC.zip.zip
Size

7.7MB
Sample

231011-rvl81sfa42
MD5

5e57c8461d842009d885738c6e2bc1a7
SHA1

44a41f190aba97363c27f2336be20f2f988aa37e
SHA256

9abbca071714ee9efbf6e3beebb7427822c4359836b28204583af5e24f4b8046
SHA512

5f4f8f275437dc5bb988a4e31c6df8f7e10f8ea7424815a0e9a17fddb3a75dbde59daa15dadf2affecfed72ac7e268fc92e47b91143988b764c2f6cb3f2d3a49
SSDEEP

196608:iQ8aF65IRo0JhlWQ9B87uYv0Zw4EgRDzS9jGtY:ifaU5Ozlj++JTRDzS8tY

Score

6^/10

Malware Config

Targets

- Target
  
  NEBULA OSC/NebulaOSC.exe
- Size
  
  1.5MB
- MD5
  
  d3afb4ad345f7dd766cf48f6c225b6c0
- SHA1
  
  81770566a842c3ef4ff306f2f9dbfde44e84d9eb
- SHA256
  
  fdd2f4e79f4970ca1bbdf4215e72483e43d4cc0f08e3932640c767c04fd41639
- SHA512
  
  621dafd13d2828d299b33790ad51bc315bb51c11187661605267dfe8355e7247848362c443bed47d7dc5ff9487fda8bed0186820c46cb67bfb526e3b147d703c
- SSDEEP
  
  49152:N/4M779Rck9tV5w1ZvLl7XrOOliyea7m:NdDUvLl7XrO/xAm
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2