8bc7ec5aba91e66351ab6f2b85719a6c3751aa616ac8bda86b9d571c3d9c34b9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PromoSoft.exe.zip
Size

15.1MB
Sample

240326-nf245sgh76
MD5

b4c963f979b66311f72682f977b8182e
SHA1

90f3e0137a4540e5da2015e5df34819af2e45f2e
SHA256

8bc7ec5aba91e66351ab6f2b85719a6c3751aa616ac8bda86b9d571c3d9c34b9
SHA512

140a356e4d58d6442bcd17b070fa52a44bdd6e169106385e0d4be979e20cf88298b66d935a8231ecb1174c21c3f924c1efc3a1687d4a3840d6220f62535e4b16
SSDEEP

393216:v44i9gFzkFeNEY/ZkJAZKH4PQQ2ykN9jPnx4ttU5sRN:A4kg9+eNZRkj4PQjykN9j/xEtcs/

Score

6^/10

Malware Config

Targets

- Target
  
  4417482292b23f597156f1be9a6dad48dd7fbdb671603b32684e825efdacb5ab
- Size
  
  34.4MB
- MD5
  
  a05b98c9341b0557f70552c896ee422a
- SHA1
  
  f5073acc6a309d143d0808d2b22ac59ba99679d9
- SHA256
  
  4417482292b23f597156f1be9a6dad48dd7fbdb671603b32684e825efdacb5ab
- SHA512
  
  cabeb99f2da13e25c495bc5a4c8d64b1699a4c1b5b8cfdc0813dedb87db37a484a4d7a74f38620ee7418d88c7cd493c888c649903c6615e9a433504f268a5055
- SSDEEP
  
  196608:Vdw8zYr2ubZiHRl1GpT8vpuHmOGkNnggBEQICEQev0viTqMzvsTHOF2rx8twk0qv:Dxuo5vpuHsk9gPv0v8Jex
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1