b3b780ceffb51c3e2f674fc5829423e4907ceca8b3c9f71ca2c5f130a522af4d | Triage

Sharing

General

Target

windows10horror.zip
Size

7.7MB
Sample

240408-nmjldabd4z
MD5

25f69090a80c5ff34025b2b243d46625
SHA1

5cd5da63e13c10d8e55b939907d9c79492d515eb
SHA256

b3b780ceffb51c3e2f674fc5829423e4907ceca8b3c9f71ca2c5f130a522af4d
SHA512

e16d8f365f2c2d0596ceb81271920aa32b38221163b2711b426e5f3bb059e40de7020ebd006a58f3e34a193669e5d16e03c765b18b5fa81eba09d367bfe7a83b
SSDEEP

196608:XtxCHQZ1a9uG9biOzwT3yExPRfq02lFrBk5x:XtXZ1a9uGCyExPRftsX4x

Score

6^/10

Malware Config

Targets

- Target
  
  Windows Update.exe
- Size
  
  9.0MB
- MD5
  
  83f4586de2ada8daa6fad9fdc57ba6aa
- SHA1
  
  566eb15119f1d2d471d33362b01802ad05f6376a
- SHA256
  
  b8bf7f6ad6486d39ba39c09169e9bd9740fbda852e670fcaf5bf5cb5f3fc4a49
- SHA512
  
  4ee3fa8934f8ea2075219943547efb9a4f77ae338e093d90236d9bb07b2e84392cba7b93ed7d94254dfd47d5cd584c4bd5c968d825ae1c0806996c29abf1d694
- SSDEEP
  
  196608:A66tn2+geSaA9+1wr9NGRGja3/aTLM89wXVM0rlhPekq/IdT+7:IZgjaA41wKKayfM8oK8lZleIdTk
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1
- Target
  
  binaryconvert.dll
- Size
  
  11KB
- MD5
  
  a7274e3d4b9b867930ca349570760354
- SHA1
  
  6024b8891119e04a1d2a3b361c38f82ac9b9fe7b
- SHA256
  
  7ba65ceceed6c215b649c84b02f3e107755e7eb1f55879ec0e9c38f3f98074b5
- SHA512
  
  9d9f489078a1b83fa2db6745df5864199bfe8208745d7398c77067865a3d41537b6eabc427f8e94a8285f0868c3351b60f1c951603925a2d9cdfa811b1029ba6
- SSDEEP
  
  192:EdLCSZM0T0VVTrZV71nlYJL/eltIDLT/dpgSF0:EdLPvT6BpSqn+LT/QK0
Score

1^/10
behavioral2
- Target
  
  boot666.dll
- Size
  
  1KB
- MD5
  
  bb76c228e691a9106ba035c8188848af
- SHA1
  
  986f92b2fa7f8e1bb89e5e1ae8f1eb18c3917051
- SHA256
  
  ee07d97f0fdfbe7ebb18842084c6d20fefe75d64100e726214560ca596966a27
- SHA512
  
  880997f2f39f79adbc38487dd74059ba3bb190b4a6c114c44a819369156dfaa3a4f0a783d1a35cf772ae18b545e0ad2b2bb4144d7015eace9c4992f33762c3f3
Score

1^/10
behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3