29f1bfcf0afc5925fe7fe37c5908f4518cfea25e60f16dd5972b1200ca68eb92 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

29f1bfcf0afc5925fe7fe37c5908f4518cfea25e60f16dd5972b1200ca68eb92
Size

49KB
Sample

240405-yhn1eacg49
MD5

771d01a4031e1db03d402b201b6e8c0a
SHA1

72ba82245b3f4b535eef9be566567394b4cd7470
SHA256

29f1bfcf0afc5925fe7fe37c5908f4518cfea25e60f16dd5972b1200ca68eb92
SHA512

65c1d9b71c3ac0e71e0aa072add795f5e56f1ce69676aa45a946029ae73b7b79a50d530acebed58aacaa495830dce298f9b29d50b2ea68333151ed7d02d7b8e6
SSDEEP

768:X1ODKAaDMG8H92RwZNQSwcfymNBg+g61GoL+um7nMv0RBdT75iVvupVg/HC:FfgLdQAQfcfymNzgA6175LI6

Score

7^/10

Malware Config

Targets

- Target
  
  29f1bfcf0afc5925fe7fe37c5908f4518cfea25e60f16dd5972b1200ca68eb92
- Size
  
  49KB
- MD5
  
  771d01a4031e1db03d402b201b6e8c0a
- SHA1
  
  72ba82245b3f4b535eef9be566567394b4cd7470
- SHA256
  
  29f1bfcf0afc5925fe7fe37c5908f4518cfea25e60f16dd5972b1200ca68eb92
- SHA512
  
  65c1d9b71c3ac0e71e0aa072add795f5e56f1ce69676aa45a946029ae73b7b79a50d530acebed58aacaa495830dce298f9b29d50b2ea68333151ed7d02d7b8e6
- SSDEEP
  
  768:X1ODKAaDMG8H92RwZNQSwcfymNBg+g61GoL+um7nMv0RBdT75iVvupVg/HC:FfgLdQAQfcfymNzgA6175LI6
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2