0fa23df75cda65bc00d1e900c6235c9e7db53b49ebbdac477c5d9274fee04359 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0fa23df75cda65bc00d1e900c6235c9e7db53b49ebbdac477c5d9274fee04359
Size

80KB
Sample

231016-h3ygksed98
MD5

a263f3a750c7fbcdae22a69894a9b16d
SHA1

245f878ebcb59c0b5ab868f4b91e6985746f4e8a
SHA256

0fa23df75cda65bc00d1e900c6235c9e7db53b49ebbdac477c5d9274fee04359
SHA512

b1177029429bd328e044b734338f58fb1271ff9a4f63f459eaadec72b6154a96419e3ad5c18448312ac42cd04b5e0c14b669a86bab942a7a2294aef95cc43d2c
SSDEEP

1536:o//Q3SHuJV97RypcIK8DQfqCNfkcRv2q/Go24lwuwCJ:o/okuJVWK8DQfq7q/GZIwuw4

Score

7^/10

Malware Config

Targets

- Target
  
  0fa23df75cda65bc00d1e900c6235c9e7db53b49ebbdac477c5d9274fee04359
- Size
  
  80KB
- MD5
  
  a263f3a750c7fbcdae22a69894a9b16d
- SHA1
  
  245f878ebcb59c0b5ab868f4b91e6985746f4e8a
- SHA256
  
  0fa23df75cda65bc00d1e900c6235c9e7db53b49ebbdac477c5d9274fee04359
- SHA512
  
  b1177029429bd328e044b734338f58fb1271ff9a4f63f459eaadec72b6154a96419e3ad5c18448312ac42cd04b5e0c14b669a86bab942a7a2294aef95cc43d2c
- SSDEEP
  
  1536:o//Q3SHuJV97RypcIK8DQfqCNfkcRv2q/Go24lwuwCJ:o/okuJVWK8DQfq7q/GZIwuw4
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2