29d44a1165b4da65bfe56989677343a3169139e9b412f0573f223b3f18b49247 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bbc4c4ce18e17dfb8c00b9e2b9eb10d5
Size

1.1MB
Sample

240308-vcrbssch7s
MD5

bbc4c4ce18e17dfb8c00b9e2b9eb10d5
SHA1

bb1fc13e2d709dc877cb0e6c0432d7eb21e1dd7d
SHA256

29d44a1165b4da65bfe56989677343a3169139e9b412f0573f223b3f18b49247
SHA512

fc861cc5577aa97cc94ccde25c174a5c371312bf251c363f0c995f3f3ba4bcb391b811dbd9d87d148cc4cf45e1fbc0b26e53064d36c7972750d3bc0a2eb846c2
SSDEEP

24576:Yu/cZJgN643anomevNjl+Myq0xvh3JrL24L2YfHulYi06n:VoiZ3aosMytx53JrLh5Omitn

Score

7^/10

Malware Config

Targets

- Target
  
  bbc4c4ce18e17dfb8c00b9e2b9eb10d5
- Size
  
  1.1MB
- MD5
  
  bbc4c4ce18e17dfb8c00b9e2b9eb10d5
- SHA1
  
  bb1fc13e2d709dc877cb0e6c0432d7eb21e1dd7d
- SHA256
  
  29d44a1165b4da65bfe56989677343a3169139e9b412f0573f223b3f18b49247
- SHA512
  
  fc861cc5577aa97cc94ccde25c174a5c371312bf251c363f0c995f3f3ba4bcb391b811dbd9d87d148cc4cf45e1fbc0b26e53064d36c7972750d3bc0a2eb846c2
- SSDEEP
  
  24576:Yu/cZJgN643anomevNjl+Myq0xvh3JrL24L2YfHulYi06n:VoiZ3aosMytx53JrLh5Omitn
Score

7^/10
- Loads dropped DLL
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2