5dfda81b477783c2c9698f0b26237c2d012b0a4bb657f67e7ded8cb0c4fd5113 | Triage

Sharing

General

Target

1b117a78fc3f787f6b520a3c961b0a99.bin
Size

5.8MB
Sample

231126-bgph8adh68
MD5

379337ef6c03bb1205d57150f3c2fd5a
SHA1

fc215b8a86e5f270afb44fef1d81bf33b01ab1e3
SHA256

5dfda81b477783c2c9698f0b26237c2d012b0a4bb657f67e7ded8cb0c4fd5113
SHA512

97d249215fd4f65025c2cdf065d4613afeacd14361bc64b02e25b5bbf693e45aa1ca75c3b9b524d4e7f73b1771e6fa3b824aec36fa657a0b9ab74078f95471e1
SSDEEP

98304:vSALCd+7EzIUGCz3bOJpl+khUh2wF9hoWL34CQKxcveyCCy7An0Nz3bJbNFLhATr:v3WILiOlXhsyGmGyg7AK3iWS

Score

6^/10

Malware Config

Targets

- Target
  
  50f6559a6562b92e036508cf7e7e7ff3349bf95f791ae8d3143f0937ce289c76.bin
- Size
  
  7.7MB
- MD5
  
  1b117a78fc3f787f6b520a3c961b0a99
- SHA1
  
  a7febb4261f9ca842e6c56e999e08f0e60b8bc04
- SHA256
  
  50f6559a6562b92e036508cf7e7e7ff3349bf95f791ae8d3143f0937ce289c76
- SHA512
  
  9f3d4f546996336606dc81210fc6138afda00a537a52843941512b6afcd26167d80de375cca826d90d56b2f3d084dc6f3e4390a8d429f081924c30cc77f27871
- SSDEEP
  
  98304:BXpTTfp5m2GMGSY5Aa5AfzCweiY5Aaevr9l08XjEthXO0oFyWRoo7gK/fUG+776w:tYTIehkQtZFoRl7R/i77+eTKF
Score

6^/10
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2