f2e9f47e23783fb961d6f32506874263f05a2f22fec3e2c3fafb6a670abcff8d | Triage

Sharing

General

Target

f2e9f47e23783fb961d6f32506874263f05a2f22fec3e2c3fafb6a670abcff8d
Size

46KB
Sample

231119-cf2b3ahc9t
MD5

486efb6a657147f65b4fde6c2d61c2c8
SHA1

5b72afd2b5767c784a04d5c857f9fb1017cc8d1f
SHA256

f2e9f47e23783fb961d6f32506874263f05a2f22fec3e2c3fafb6a670abcff8d
SHA512

635bf552f39caa2e72f0c54380f701a9e3d684cc785169e9334beaa78a41c499a094cabd036c38872dea3eb8f2357ae99e0f8f3d15c4f0c3aa48f46746cab256
SSDEEP

768:dBR1ODKAaDMG8H92RwZNQSwcfymNBg+g61Go0ssQUnV9P8HGZ2FBRfIDG7zUf2h4:nfgLdQAQfcfymNqV9aRfXzUfV

Score

7^/10

Malware Config

Targets

- Target
  
  f2e9f47e23783fb961d6f32506874263f05a2f22fec3e2c3fafb6a670abcff8d
- Size
  
  46KB
- MD5
  
  486efb6a657147f65b4fde6c2d61c2c8
- SHA1
  
  5b72afd2b5767c784a04d5c857f9fb1017cc8d1f
- SHA256
  
  f2e9f47e23783fb961d6f32506874263f05a2f22fec3e2c3fafb6a670abcff8d
- SHA512
  
  635bf552f39caa2e72f0c54380f701a9e3d684cc785169e9334beaa78a41c499a094cabd036c38872dea3eb8f2357ae99e0f8f3d15c4f0c3aa48f46746cab256
- SSDEEP
  
  768:dBR1ODKAaDMG8H92RwZNQSwcfymNBg+g61Go0ssQUnV9P8HGZ2FBRfIDG7zUf2h4:nfgLdQAQfcfymNqV9aRfXzUfV
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2