4a669b80c249d809b1266a3f6c3ba90e3a47d3b40fb7d573d35fb277299c9ea5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

44a4a3cee3711c227f661ba6faaf8b17.bin
Size

16.1MB
Sample

240124-b8p9tsffc2
MD5

44a4a3cee3711c227f661ba6faaf8b17
SHA1

c06532b776be18520cb96291106750afe95899ff
SHA256

4a669b80c249d809b1266a3f6c3ba90e3a47d3b40fb7d573d35fb277299c9ea5
SHA512

3de7dc187fbcaf6821412146c9d3aabb6a624eef9f2bf4e0c3c1358366f33cdde8267220a1ea5a3fdf537518616c22e72dd134c6253bb71da79f6b76a32d78e2
SSDEEP

98304:p9XWQduUEgMexGKmQCxqzGdgbXCpoABxvYaSyVyLV1G426JATeGeghaexcpSwBfX:pEQdi7KXMqCdx4QVyLV0TTeGRGgl

Score

7^/10

Malware Config

Targets

- Target
  
  44a4a3cee3711c227f661ba6faaf8b17.bin
- Size
  
  16.1MB
- MD5
  
  44a4a3cee3711c227f661ba6faaf8b17
- SHA1
  
  c06532b776be18520cb96291106750afe95899ff
- SHA256
  
  4a669b80c249d809b1266a3f6c3ba90e3a47d3b40fb7d573d35fb277299c9ea5
- SHA512
  
  3de7dc187fbcaf6821412146c9d3aabb6a624eef9f2bf4e0c3c1358366f33cdde8267220a1ea5a3fdf537518616c22e72dd134c6253bb71da79f6b76a32d78e2
- SSDEEP
  
  98304:p9XWQduUEgMexGKmQCxqzGdgbXCpoABxvYaSyVyLV1G426JATeGeghaexcpSwBfX:pEQdi7KXMqCdx4QVyLV0TTeGRGgl
Score

7^/10
- Loads dropped DLL
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2