70472aa587951ff40c598b3daa4aff1897ef9ece58662e946f42fa2d31650306 | Triage

Sharing

General

Target

70472aa587951ff40c598b3daa4aff1897ef9ece58662e946f42fa2d31650306
Size

3.1MB
Sample

231229-jdh62agad3
MD5

056ff71fcb650295de4af466938f602c
SHA1

37b774f9240b2e857105cf34d27fd39d59667528
SHA256

70472aa587951ff40c598b3daa4aff1897ef9ece58662e946f42fa2d31650306
SHA512

84f9d2f1c9c3f10f89709babbc197ca66e3a9d0c4703723fab86e4f5e78de7bf69ddddf08b3ddb098dad67a21de4d03ac32a4b97d63cc62c57bf688fe00391a0
SSDEEP

49152:E3WKw+1y/8nlKh5jZg/7DaxAfovAF6RKcCx+29uWV9D489MM7rbI:ED1yWliUDmAAvAF6RKj91PM+y

Score

7^/10

Malware Config

Targets

- Target
  
  70472aa587951ff40c598b3daa4aff1897ef9ece58662e946f42fa2d31650306
- Size
  
  3.1MB
- MD5
  
  056ff71fcb650295de4af466938f602c
- SHA1
  
  37b774f9240b2e857105cf34d27fd39d59667528
- SHA256
  
  70472aa587951ff40c598b3daa4aff1897ef9ece58662e946f42fa2d31650306
- SHA512
  
  84f9d2f1c9c3f10f89709babbc197ca66e3a9d0c4703723fab86e4f5e78de7bf69ddddf08b3ddb098dad67a21de4d03ac32a4b97d63cc62c57bf688fe00391a0
- SSDEEP
  
  49152:E3WKw+1y/8nlKh5jZg/7DaxAfovAF6RKcCx+29uWV9D489MM7rbI:ED1yWliUDmAAvAF6RKj91PM+y
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2