1bda06eb2ed58ae63e076fd7856133eeb09717e7679c72957de1de7159a575a9 | Triage

Sharing

General

Target

TS-240404-TB2.exe
Size

221KB
Sample

240404-ya4qwsha26
MD5

16b61a24a6cd3090d1f6210ac9006c7c
SHA1

9618960feb88143e056fac81d92719d06b86d8e2
SHA256

1bda06eb2ed58ae63e076fd7856133eeb09717e7679c72957de1de7159a575a9
SHA512

e43fb244badf332dab1225551a58155bdd85a262bb0041ac282395bf025f48955f6a34aaf3fbcf83b478be82ea5e85a2ce8be41e2f5996a493f2af7bce4c4760
SSDEEP

3072:yt5mFQsnQnvgkDwxWzBUEPMZZbude/4v+1IgoWakkgeAHCr1bPpaHI1FeDNAq:q5fsQvgTmBUodLVgoWavsKbP/Y

Score

7^/10

Malware Config

Targets

- Target
  
  TS-240404-TB2.exe
- Size
  
  221KB
- MD5
  
  16b61a24a6cd3090d1f6210ac9006c7c
- SHA1
  
  9618960feb88143e056fac81d92719d06b86d8e2
- SHA256
  
  1bda06eb2ed58ae63e076fd7856133eeb09717e7679c72957de1de7159a575a9
- SHA512
  
  e43fb244badf332dab1225551a58155bdd85a262bb0041ac282395bf025f48955f6a34aaf3fbcf83b478be82ea5e85a2ce8be41e2f5996a493f2af7bce4c4760
- SSDEEP
  
  3072:yt5mFQsnQnvgkDwxWzBUEPMZZbude/4v+1IgoWakkgeAHCr1bPpaHI1FeDNAq:q5fsQvgTmBUodLVgoWavsKbP/Y
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2