61996c592b5084aa92125c8c400e2cdb2e9a4dc78ad3929a17cf61e30c44c6ef | Triage

Sharing

General

Target

NEAS.4fe79f161b6549bc8b221cb1ef6c5d5d.exe
Size

450KB
Sample

231106-xhlplseg33
MD5

4fe79f161b6549bc8b221cb1ef6c5d5d
SHA1

af30cbd7e58fcb6a8acd7bf1e84efc0520caa6d5
SHA256

61996c592b5084aa92125c8c400e2cdb2e9a4dc78ad3929a17cf61e30c44c6ef
SHA512

bcbf9ec83bdbcea803789f47f589c1ac8cdae17f207abab19ac1561f6fe3f6b4d3c4019c1aa4e29e14494b0638e95dfd2916bf6eb61baedcd564fdc7c2a48909
SSDEEP

3072:Dxv/y9LJ3tGXRvjxpkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTBrgmQ+:9amlTZNQSBQGH/CSpWqTKmQ

Score

6^/10

Malware Config

Targets

- Target
  
  NEAS.4fe79f161b6549bc8b221cb1ef6c5d5d.exe
- Size
  
  450KB
- MD5
  
  4fe79f161b6549bc8b221cb1ef6c5d5d
- SHA1
  
  af30cbd7e58fcb6a8acd7bf1e84efc0520caa6d5
- SHA256
  
  61996c592b5084aa92125c8c400e2cdb2e9a4dc78ad3929a17cf61e30c44c6ef
- SHA512
  
  bcbf9ec83bdbcea803789f47f589c1ac8cdae17f207abab19ac1561f6fe3f6b4d3c4019c1aa4e29e14494b0638e95dfd2916bf6eb61baedcd564fdc7c2a48909
- SSDEEP
  
  3072:Dxv/y9LJ3tGXRvjxpkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTBrgmQ+:9amlTZNQSBQGH/CSpWqTKmQ
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2