928d1af074bd06c6db51b561a6abd4fd999682a41d221822144267ae40fabb8c | Triage

Sharing

General

Target

226700a4f98ed1364cd9521d12eda3f8
Size

93KB
Sample

231231-bbv4taahdk
MD5

226700a4f98ed1364cd9521d12eda3f8
SHA1

c8c34f9638210d90bf626e567b8737a3e3a005d1
SHA256

928d1af074bd06c6db51b561a6abd4fd999682a41d221822144267ae40fabb8c
SHA512

87f7e0e566294f60a70eae0b9ad4457c4aadcdc707ceaa279b27420d9dfd19d2c95fa161e5995837c934dc87c91c7b05095b39a76b9a76797014302da50959be
SSDEEP

1536:BQAq6QGt8MnqugNE/o2bpqS7bQBaMd7/67kTs7+CJ:O6ruMna+/HZ8ISOkY7+C

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  226700a4f98ed1364cd9521d12eda3f8
- Size
  
  93KB
- MD5
  
  226700a4f98ed1364cd9521d12eda3f8
- SHA1
  
  c8c34f9638210d90bf626e567b8737a3e3a005d1
- SHA256
  
  928d1af074bd06c6db51b561a6abd4fd999682a41d221822144267ae40fabb8c
- SHA512
  
  87f7e0e566294f60a70eae0b9ad4457c4aadcdc707ceaa279b27420d9dfd19d2c95fa161e5995837c934dc87c91c7b05095b39a76b9a76797014302da50959be
- SSDEEP
  
  1536:BQAq6QGt8MnqugNE/o2bpqS7bQBaMd7/67kTs7+CJ:O6ruMna+/HZ8ISOkY7+C
Score

8^/10

evasion
- Disables Task Manager via registry modification
  evasion
- Drops file in Drivers directory
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2