15cec831b12a0713a14a38c3d8a1a067adb86e538fb599296a09c8dc5bc8b364 | Triage

Sharing

General

Target

15cec831b12a0713a14a38c3d8a1a067adb86e538fb599296a09c8dc5bc8b364
Size

530KB
Sample

240118-ydma1sgadr
MD5

17b18fad091a105b7adc27ad2545bbdc
SHA1

13f8144b240ca6df7847b86d610b07bc811bb40b
SHA256

15cec831b12a0713a14a38c3d8a1a067adb86e538fb599296a09c8dc5bc8b364
SHA512

42881a8068d3d74acbd29ac36fe33ad2179ce1cd1ddc7fe76154e06d5b39c86dbbbb8f27ae0659220555a559aa8d2e367a60b01744b0d3e25e0b0a1bec69f74d
SSDEEP

12288:w7+oqb61gjjtmevCClxPZyH2WaGWcZywmITc5kOCexlBGu8dKOU5:w75q+1KhmOgH26WcZywmITc5kOCexlBD

Score

7^/10

Malware Config

Targets

- Target
  
  15cec831b12a0713a14a38c3d8a1a067adb86e538fb599296a09c8dc5bc8b364
- Size
  
  530KB
- MD5
  
  17b18fad091a105b7adc27ad2545bbdc
- SHA1
  
  13f8144b240ca6df7847b86d610b07bc811bb40b
- SHA256
  
  15cec831b12a0713a14a38c3d8a1a067adb86e538fb599296a09c8dc5bc8b364
- SHA512
  
  42881a8068d3d74acbd29ac36fe33ad2179ce1cd1ddc7fe76154e06d5b39c86dbbbb8f27ae0659220555a559aa8d2e367a60b01744b0d3e25e0b0a1bec69f74d
- SSDEEP
  
  12288:w7+oqb61gjjtmevCClxPZyH2WaGWcZywmITc5kOCexlBGu8dKOU5:w75q+1KhmOgH26WcZywmITc5kOCexlBD
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2