b497c3aed46750a8ad22aa7fab2f250ea21a6ab30bce57a9893cb4d366fb7608 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b497c3aed46750a8ad22aa7fab2f250ea21a6ab30bce57a9893cb4d366fb7608
Size

2.8MB
Sample

240305-jfge8ahg3v
MD5

7bfbc65fa6a043f62c9298616dc8a0e5
SHA1

ba2763fa4e161a85d5715720f00cd9386d2cc808
SHA256

b497c3aed46750a8ad22aa7fab2f250ea21a6ab30bce57a9893cb4d366fb7608
SHA512

130ad607e3b61468cbaca67de0a941cba3297faea6f9851fa423b2275a07904693e828abcf8f016cd7e510d62afedfe3104cb462ed133013dfd12c01b2796f10
SSDEEP

49152:I6gLKJuMarhVnMFwTH8/giBiBcbk4ZxZ2DqFeVMhuxcPh:Vd1XdhBiiMa7

Score

7^/10

Malware Config

Targets

- Target
  
  b497c3aed46750a8ad22aa7fab2f250ea21a6ab30bce57a9893cb4d366fb7608
- Size
  
  2.8MB
- MD5
  
  7bfbc65fa6a043f62c9298616dc8a0e5
- SHA1
  
  ba2763fa4e161a85d5715720f00cd9386d2cc808
- SHA256
  
  b497c3aed46750a8ad22aa7fab2f250ea21a6ab30bce57a9893cb4d366fb7608
- SHA512
  
  130ad607e3b61468cbaca67de0a941cba3297faea6f9851fa423b2275a07904693e828abcf8f016cd7e510d62afedfe3104cb462ed133013dfd12c01b2796f10
- SSDEEP
  
  49152:I6gLKJuMarhVnMFwTH8/giBiBcbk4ZxZ2DqFeVMhuxcPh:Vd1XdhBiiMa7
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2