aa449835a1a096332b5c753fb9e212110fca012cc50ea57af703748ba650ddad | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa449835a1a096332b5c753fb9e212110fca012cc50ea57af703748ba650ddad
Size

1.1MB
Sample

231229-fw642acdfl
MD5

d34e605916810c37613550e9bda0b9f8
SHA1

263224e088c099e8ec7422a40f65ae2e84e19f00
SHA256

aa449835a1a096332b5c753fb9e212110fca012cc50ea57af703748ba650ddad
SHA512

72ff74f16c75333c746ec310be74afda6eba902115f53bbd9e9945b9f97c674bc4d9708f945f36a1ed7dcfc98d16da8868c497c9b44b6f24dfb830a1f0b5d259
SSDEEP

24576:vPfLMlhR/LfMiL46DrL+irjY6BEhx6bRGl8huqNkrnE5:v8MWeiPY6BEhx2AqmE5

Score

7^/10

Malware Config

Targets

- Target
  
  aa449835a1a096332b5c753fb9e212110fca012cc50ea57af703748ba650ddad
- Size
  
  1.1MB
- MD5
  
  d34e605916810c37613550e9bda0b9f8
- SHA1
  
  263224e088c099e8ec7422a40f65ae2e84e19f00
- SHA256
  
  aa449835a1a096332b5c753fb9e212110fca012cc50ea57af703748ba650ddad
- SHA512
  
  72ff74f16c75333c746ec310be74afda6eba902115f53bbd9e9945b9f97c674bc4d9708f945f36a1ed7dcfc98d16da8868c497c9b44b6f24dfb830a1f0b5d259
- SSDEEP
  
  24576:vPfLMlhR/LfMiL46DrL+irjY6BEhx6bRGl8huqNkrnE5:v8MWeiPY6BEhx2AqmE5
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2