54bad935a11a0d5e7a8d12a023c486ca87e310bd1168ecd7bb7f0203218f20a4 | Triage

Sharing

General

Target

54bad935a11a0d5e7a8d12a023c486ca87e310bd1168ecd7bb7f0203218f20a4
Size

292KB
Sample

231113-t82xqsee37
MD5

7aac4fbe5c22841c84e8690a836e46af
SHA1

27e470e94a988e4a6d6bccf8b862d59e66c409d0
SHA256

54bad935a11a0d5e7a8d12a023c486ca87e310bd1168ecd7bb7f0203218f20a4
SHA512

25b6ac5bc1ee8132443c88e0c65069e8eff1314152b4688dfc00ddb75723c16025fb5b9f1af6b29eed78ca9d152912ed57c7b3100bad1f6357a18808738f0d41
SSDEEP

3072:UftffjmNSGNWHDzttk5pLzSMEjF47yctMYTWfYj9DfWxRmY7jyP0ejUl:sVfjmNfNmZtb4wNQBDfWxRvs0ewl

Score

7^/10

Malware Config

Targets

- Target
  
  54bad935a11a0d5e7a8d12a023c486ca87e310bd1168ecd7bb7f0203218f20a4
- Size
  
  292KB
- MD5
  
  7aac4fbe5c22841c84e8690a836e46af
- SHA1
  
  27e470e94a988e4a6d6bccf8b862d59e66c409d0
- SHA256
  
  54bad935a11a0d5e7a8d12a023c486ca87e310bd1168ecd7bb7f0203218f20a4
- SHA512
  
  25b6ac5bc1ee8132443c88e0c65069e8eff1314152b4688dfc00ddb75723c16025fb5b9f1af6b29eed78ca9d152912ed57c7b3100bad1f6357a18808738f0d41
- SSDEEP
  
  3072:UftffjmNSGNWHDzttk5pLzSMEjF47yctMYTWfYj9DfWxRmY7jyP0ejUl:sVfjmNfNmZtb4wNQBDfWxRvs0ewl
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2