aba31c5fcdf09e72e48a67e840f817c0d89683c59c904189c990234d423c38fb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aba31c5fcdf09e72e48a67e840f817c0d89683c59c904189c990234d423c38fb
Size

445KB
Sample

240404-xs4ceaff2y
MD5

a9a7dd6393842755efa54a809b9bebc5
SHA1

633c8f88f8f4cfd2e4b5ea74a59b97190b0e2e38
SHA256

aba31c5fcdf09e72e48a67e840f817c0d89683c59c904189c990234d423c38fb
SHA512

fa7f666a0d7a904c57e11e73c9692f4fd3cc14b63150823c20ac7f62048e66b6f61ae31f251bd1653cf7f8bb93edc562d5572c30e4b704e63b84eb6e3a1befad
SSDEEP

3072:2ftffjmNgmB/wdTS/8R2a/Qnjm66LdS3RXPrNisAniWFk:uVfjmN4gA2RpNww

Score

7^/10

Malware Config

Targets

- Target
  
  aba31c5fcdf09e72e48a67e840f817c0d89683c59c904189c990234d423c38fb
- Size
  
  445KB
- MD5
  
  a9a7dd6393842755efa54a809b9bebc5
- SHA1
  
  633c8f88f8f4cfd2e4b5ea74a59b97190b0e2e38
- SHA256
  
  aba31c5fcdf09e72e48a67e840f817c0d89683c59c904189c990234d423c38fb
- SHA512
  
  fa7f666a0d7a904c57e11e73c9692f4fd3cc14b63150823c20ac7f62048e66b6f61ae31f251bd1653cf7f8bb93edc562d5572c30e4b704e63b84eb6e3a1befad
- SSDEEP
  
  3072:2ftffjmNgmB/wdTS/8R2a/Qnjm66LdS3RXPrNisAniWFk:uVfjmN4gA2RpNww
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2