6968f76c2e2fb512dcca6da25970c213b67aa94f01d92d5081a860b65f613264 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d84f9c8908dc754af9ae5ca85f44eca
Size

503KB
Sample

231225-t2xdnshfd8
MD5

2d84f9c8908dc754af9ae5ca85f44eca
SHA1

d7db1a3ca10ca04fd2b5971b7b2bbe2558671aa6
SHA256

6968f76c2e2fb512dcca6da25970c213b67aa94f01d92d5081a860b65f613264
SHA512

e8d518293354b7ed1294fb4216c4bd2392eb9df06166ec70c1f4a2f1bda1fb003e0bf306ad5d1ad2918dfc825b52dc30a675c922beb8782ef6c442c9928222d1
SSDEEP

12288:jc5ktjheYdkTqEy2JEIt+apwt39G501JmWd0PD:pjhoTV/gt3k2n0r

Score

7^/10

Malware Config

Targets

- Target
  
  COMPROBANTE-DXP824387-52-23-25-234-23-52-45252-45-235-235235.msi
- Size
  
  1.1MB
- MD5
  
  5e2f3837aff5f7490f19656c1f60d177
- SHA1
  
  ae46b08278c72c505d28f680650ee88725856e72
- SHA256
  
  f58adebd3bc565e8b1c9a1711f142d43600ca19de16454b79da89b2d62dd0455
- SHA512
  
  e015661881ec8ab6b083740e594b242b28fa979bc608b38d06a1d5046348b72ad41df4d178685007931022aefbdc903cc5ab2ea02aa84de3531c465cf6e0c71b
- SSDEEP
  
  24576:r0Ute5Nk8RsenMoyr8x87B2SoxD4zHQLTtuaGY5Aq:r0UAlvyrRQSZHQLDGY5A
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2