ebb825664642befb034e02fdac2c2ed618f2832e563f1380f8f02e738e477345 | Triage

Resubmissions

11-01-2024 04:17

240111-ewj4tsfcf9 7

11-01-2024 04:09

240111-eq4laafbg6 7

10-01-2024 02:48

240110-darq4scdbn 7

10-01-2024 02:33

240110-c2bcrscbfl 7

10-01-2024 02:10

240110-cls8msdaf5 1

10-01-2024 01:31

240110-bxfw1scec5 1

Sharing

General

Target

mal.zip
Size

4.5MB
Sample

240111-ewj4tsfcf9
MD5

15a36183a2d2c4a43f7f203548fbcb04
SHA1

3ce2a3904eeef714abec465b55a0c20f6e47b079
SHA256

ebb825664642befb034e02fdac2c2ed618f2832e563f1380f8f02e738e477345
SHA512

67325d485999e25cbe1c31162af5f3f081de3a22b15cd7b79470c20276a4fb299762835d94e7a4ffa4756b41df9eba7d692d84d455d7645e5e09386a09b18e4f
SSDEEP

98304:pOA4lR+FGuh9N2fQdB9ySsivCYOxSeWs10MS9UVmpLhVGQvnUQqy5H+:pSR+FGugfQdB9vlvChWmdS9U2LHFZF+

Score

7^/10

Malware Config

Targets

- Target
  
  mal.zip
- Size
  
  4.5MB
- MD5
  
  15a36183a2d2c4a43f7f203548fbcb04
- SHA1
  
  3ce2a3904eeef714abec465b55a0c20f6e47b079
- SHA256
  
  ebb825664642befb034e02fdac2c2ed618f2832e563f1380f8f02e738e477345
- SHA512
  
  67325d485999e25cbe1c31162af5f3f081de3a22b15cd7b79470c20276a4fb299762835d94e7a4ffa4756b41df9eba7d692d84d455d7645e5e09386a09b18e4f
- SSDEEP
  
  98304:pOA4lR+FGuh9N2fQdB9ySsivCYOxSeWs10MS9UVmpLhVGQvnUQqy5H+:pSR+FGugfQdB9vlvChWmdS9U2LHFZF+
Score

7^/10
- Loads dropped DLL
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2