289b761928e72f1df7936636ed0821abb93ae31ff69298183372325c3a7a90e5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

289b761928e72f1df7936636ed0821abb93ae31ff69298183372325c3a7a90e5
Size

58KB
Sample

231125-zzd27sdb6y
MD5

77ffea321c70427beb3194dfe684a4fe
SHA1

f5db34eaa237c7513bf5039ee3d79915066826f5
SHA256

289b761928e72f1df7936636ed0821abb93ae31ff69298183372325c3a7a90e5
SHA512

b4b7fb7ef6603d6bf5ce14d704b1609d7da9b4a7f156d6951d6d0d1a8269335879488498dfe0f60841bea840daa121bbfaf8e43801089ccf8c07a3d188e06bbb
SSDEEP

768:S1ODKAaDMG8H92RwZNQSwcfymNBg+g61GoL4X9kz2t7kf/fHrFgT:0fgLdQAQfcfymNetopgT

Score

7^/10

Malware Config

Targets

- Target
  
  289b761928e72f1df7936636ed0821abb93ae31ff69298183372325c3a7a90e5
- Size
  
  58KB
- MD5
  
  77ffea321c70427beb3194dfe684a4fe
- SHA1
  
  f5db34eaa237c7513bf5039ee3d79915066826f5
- SHA256
  
  289b761928e72f1df7936636ed0821abb93ae31ff69298183372325c3a7a90e5
- SHA512
  
  b4b7fb7ef6603d6bf5ce14d704b1609d7da9b4a7f156d6951d6d0d1a8269335879488498dfe0f60841bea840daa121bbfaf8e43801089ccf8c07a3d188e06bbb
- SSDEEP
  
  768:S1ODKAaDMG8H92RwZNQSwcfymNBg+g61GoL4X9kz2t7kf/fHrFgT:0fgLdQAQfcfymNetopgT
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2