806185b5c6f025148d65b58be2f246611c4ce98ccdb41960654688e4186ddf75 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

806185b5c6f025148d65b58be2f246611c4ce98ccdb41960654688e4186ddf75
Size

3.0MB
Sample

240124-3nljpabgbj
MD5

61dfee8d3fbd32cbbeda176c4db4bc40
SHA1

23c7a27a9bd5327488f7edda32713ad6766dae72
SHA256

806185b5c6f025148d65b58be2f246611c4ce98ccdb41960654688e4186ddf75
SHA512

764872bf3949647be00181ec147f84996adf180d4952e6b7c0b5861f40bf8aef9cafb0dfa2e7c1cf8462d46871318441004a5ccea462997f7aec0f40421bde50
SSDEEP

49152:U7J8CFQV4NXLKFAR+/N50M9Gwugz3+ZISSiCPRKBXFL:LHON7IvvG1gzIr

Score

7^/10

Malware Config

Targets

- Target
  
  806185b5c6f025148d65b58be2f246611c4ce98ccdb41960654688e4186ddf75
- Size
  
  3.0MB
- MD5
  
  61dfee8d3fbd32cbbeda176c4db4bc40
- SHA1
  
  23c7a27a9bd5327488f7edda32713ad6766dae72
- SHA256
  
  806185b5c6f025148d65b58be2f246611c4ce98ccdb41960654688e4186ddf75
- SHA512
  
  764872bf3949647be00181ec147f84996adf180d4952e6b7c0b5861f40bf8aef9cafb0dfa2e7c1cf8462d46871318441004a5ccea462997f7aec0f40421bde50
- SSDEEP
  
  49152:U7J8CFQV4NXLKFAR+/N50M9Gwugz3+ZISSiCPRKBXFL:LHON7IvvG1gzIr
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2