df7a9679b778b4de4de825c82a4bdb7fda34f0c69df35756a8e7ba351f7d82ea | Triage

Sharing

Copy URL Twitter E-mail

General

Target

df7a9679b778b4de4de825c82a4bdb7fda34f0c69df35756a8e7ba351f7d82ea
Size

2.3MB
Sample

231210-xnkz9sbfh2
MD5

a54518ce07ea175ccc0df914ef3d6061
SHA1

8e81bf8a96ff6c741db351a2a147ce0bbec5991c
SHA256

df7a9679b778b4de4de825c82a4bdb7fda34f0c69df35756a8e7ba351f7d82ea
SHA512

45563708e67092cd161e93a03435fb2f4d32666b90eab278475ce4c3d9f8ce8665f1d9cfc0141c69a7c5ae5af0c8ca5739dfcf98f97eaf690b2479b40f3aea8b
SSDEEP

49152:y7KQN2skpzPXDFBjWRJTCAIHuDeeaJ98mjRC9YC2Ns+/X0h54GEewKk:v62bz/5YvpI2eey98CRC4L0ZRbk

Score

7^/10

Malware Config

Targets

- Target
  
  df7a9679b778b4de4de825c82a4bdb7fda34f0c69df35756a8e7ba351f7d82ea
- Size
  
  2.3MB
- MD5
  
  a54518ce07ea175ccc0df914ef3d6061
- SHA1
  
  8e81bf8a96ff6c741db351a2a147ce0bbec5991c
- SHA256
  
  df7a9679b778b4de4de825c82a4bdb7fda34f0c69df35756a8e7ba351f7d82ea
- SHA512
  
  45563708e67092cd161e93a03435fb2f4d32666b90eab278475ce4c3d9f8ce8665f1d9cfc0141c69a7c5ae5af0c8ca5739dfcf98f97eaf690b2479b40f3aea8b
- SSDEEP
  
  49152:y7KQN2skpzPXDFBjWRJTCAIHuDeeaJ98mjRC9YC2Ns+/X0h54GEewKk:v62bz/5YvpI2eey98CRC4L0ZRbk
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2