cc45322d3a3817bfe097ac62f6e7505ff15777d6b0295ff8b81ae20fea5a54c8 | Triage

Sharing

General

Target

cc45322d3a3817bfe097ac62f6e7505ff15777d6b0295ff8b81ae20fea5a54c8
Size

2.6MB
Sample

231225-ycymnacdcq
MD5

b77dff69f387d6dfee7bcf8e2af055e5
SHA1

2a7fd7e3d8af44d9bf147186c9c92de532afd238
SHA256

cc45322d3a3817bfe097ac62f6e7505ff15777d6b0295ff8b81ae20fea5a54c8
SHA512

09ed5489c4de7fb6bc84e607e8e180ce892ac1d52895793ea545825a0ca4310b95ba3c1d8b4d63eb722767820429ecc83d5edf55e00ff9eef896f5aeb1af47d9
SSDEEP

49152:YJ0kBwfNFBabWNypTU83tewc/CiFqTxAEoP2HM6K8P6J9Io6gPJHAi6tkZk8kakp:6l6qTUsMx/3qTWEoPeM6K8rojHP6T

Score

7^/10

Malware Config

Targets

- Target
  
  cc45322d3a3817bfe097ac62f6e7505ff15777d6b0295ff8b81ae20fea5a54c8
- Size
  
  2.6MB
- MD5
  
  b77dff69f387d6dfee7bcf8e2af055e5
- SHA1
  
  2a7fd7e3d8af44d9bf147186c9c92de532afd238
- SHA256
  
  cc45322d3a3817bfe097ac62f6e7505ff15777d6b0295ff8b81ae20fea5a54c8
- SHA512
  
  09ed5489c4de7fb6bc84e607e8e180ce892ac1d52895793ea545825a0ca4310b95ba3c1d8b4d63eb722767820429ecc83d5edf55e00ff9eef896f5aeb1af47d9
- SSDEEP
  
  49152:YJ0kBwfNFBabWNypTU83tewc/CiFqTxAEoP2HM6K8P6J9Io6gPJHAi6tkZk8kakp:6l6qTUsMx/3qTWEoPeM6K8rojHP6T
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2