ffde70aaf00f9216beffe37e3c424a60d0eaa5aca230d27e03abc0c9e3986641 | Triage

Sharing

General

Target

ffde70aaf00f9216beffe37e3c424a60d0eaa5aca230d27e03abc0c9e3986641
Size

4.0MB
Sample

240115-bzcmdaehak
MD5

e330b40b00ef0d38fdf3b4ab182e7f6a
SHA1

9615c206133b42919bafd762223a4797e06ab741
SHA256

ffde70aaf00f9216beffe37e3c424a60d0eaa5aca230d27e03abc0c9e3986641
SHA512

e3feeeaab863b753dcdd86a47cb8b55873fb26644dffe4da5098225ff63b08c3af5ee0d979e2cd2a74cea2fb62cae28f548f8a8becb6a55dfb29d745d1363b81
SSDEEP

98304:pV/HNRtqTphSv3YNU6M/Kx31QR1M1KeUrgVi5KzKo7PBTiWekfrQLl8pph6v3YNb:phtGqArQW

Score

7^/10

Malware Config

Targets

- Target
  
  ffde70aaf00f9216beffe37e3c424a60d0eaa5aca230d27e03abc0c9e3986641
- Size
  
  4.0MB
- MD5
  
  e330b40b00ef0d38fdf3b4ab182e7f6a
- SHA1
  
  9615c206133b42919bafd762223a4797e06ab741
- SHA256
  
  ffde70aaf00f9216beffe37e3c424a60d0eaa5aca230d27e03abc0c9e3986641
- SHA512
  
  e3feeeaab863b753dcdd86a47cb8b55873fb26644dffe4da5098225ff63b08c3af5ee0d979e2cd2a74cea2fb62cae28f548f8a8becb6a55dfb29d745d1363b81
- SSDEEP
  
  98304:pV/HNRtqTphSv3YNU6M/Kx31QR1M1KeUrgVi5KzKo7PBTiWekfrQLl8pph6v3YNb:phtGqArQW
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2