dd89e450659c6601d4c21346d336148530bca01a03896eb68fefcf8eec9815ba | Triage

Sharing

General

Target

c446fef0e9dd02f6fb133b0e14bbf1c32fee6d3eb8ff9f18f266adcd53109401.msi.zip
Size

68.6MB
Sample

231102-2w7lfsag27
MD5

d8b23223c26665b241bc07ae9c8c7e35
SHA1

16a89654fe14072dfa87c57d8db96a040796fef8
SHA256

dd89e450659c6601d4c21346d336148530bca01a03896eb68fefcf8eec9815ba
SHA512

a955442ea540ad537ff892faae2b6ce1c98257216daa189670877477ed2e61064eec354e762fb8cfde7fa4597fb5d19af27cd93be82691f95c1ac56093fc7ee1
SSDEEP

1572864:9XDtzd2k3tMQZYsq3+6Zlploncz8hUfDQbmAMb5XYj08suTeM:9Xh4k9jOP3+6Zlp+Ufs6AM9XYjleM

Score

6^/10

Malware Config

Targets

- Target
  
  c446fef0e9dd02f6fb133b0e14bbf1c32fee6d3eb8ff9f18f266adcd53109401.msi
- Size
  
  71.5MB
- MD5
  
  ae3b61c511a039e5f221d0f9100f00ad
- SHA1
  
  057981ec40f35d5cb3893decbf95583ec7d6136b
- SHA256
  
  c446fef0e9dd02f6fb133b0e14bbf1c32fee6d3eb8ff9f18f266adcd53109401
- SHA512
  
  318ef242af72983be21089cff7ebf57c3e5106a14c60763776f18b76954efde7ce31722b5031ec5f431cd55ca501cca9a269276195926ced0ae9d3d93e76e35a
- SSDEEP
  
  1572864:B86VfgV7h6W4FYXfBF4HCdwD0qcHpqQfSN7jYsfI:C6Vf8clFqPawwDPcHpKFjYsf
Score

6^/10
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2