b6c19141e70a6849a43b3ef9474d146e4c54cf25f523e614b1732d81485f4b57 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6c19141e70a6849a43b3ef9474d146e4c54cf25f523e614b1732d81485f4b57
Size

242KB
Sample

240228-zhjlcsde32
MD5

cc11282b7f5bbdc002dbe35ea153fab2
SHA1

8aaf783e56479d8f8b3d946eb941ee07c32e6210
SHA256

b6c19141e70a6849a43b3ef9474d146e4c54cf25f523e614b1732d81485f4b57
SHA512

36bcac606d5fb556f8a4656ddf652c41e0238811e213e579c0771037ab23017e0e2741742d32a57ae94da8624d95594cfe074bb4b8d13c34d05976365620bad3
SSDEEP

3072:1sftffjmN/B4odcQPaHy4V8y47vRNZ2iL45uN9woY46x6a8fGIkkJxGAxYJ:iVfjmN/BjZPaS4VF4T52ikHohloAs

Score

7^/10

Malware Config

Targets

- Target
  
  b6c19141e70a6849a43b3ef9474d146e4c54cf25f523e614b1732d81485f4b57
- Size
  
  242KB
- MD5
  
  cc11282b7f5bbdc002dbe35ea153fab2
- SHA1
  
  8aaf783e56479d8f8b3d946eb941ee07c32e6210
- SHA256
  
  b6c19141e70a6849a43b3ef9474d146e4c54cf25f523e614b1732d81485f4b57
- SHA512
  
  36bcac606d5fb556f8a4656ddf652c41e0238811e213e579c0771037ab23017e0e2741742d32a57ae94da8624d95594cfe074bb4b8d13c34d05976365620bad3
- SSDEEP
  
  3072:1sftffjmN/B4odcQPaHy4V8y47vRNZ2iL45uN9woY46x6a8fGIkkJxGAxYJ:iVfjmN/BjZPaS4VF4T52ikHohloAs
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2