32c691936fd1d4e5829866f1a5e84ee1f91abdf0eeb09638ed9b8b44a5dc7980 | Triage

Sharing

General

Target

SecuriteInfo.com.Trojan.Siggen21.1874.13361.18609.msi
Size

44.0MB
Sample

240411-aphvzafc73
MD5

6a4b83674db39468c27616888fc10cab
SHA1

c46c674465c3a0e68710b7932a63cdd87cb32e7d
SHA256

32c691936fd1d4e5829866f1a5e84ee1f91abdf0eeb09638ed9b8b44a5dc7980
SHA512

048ba6db20f7e541e799a2ae80280b37b7446b2e0ffce32ab2f22a8395480a4a852acecbf4277fd892d5ee70672f3f0ff8e657d411a5cd658b1d4441f05c4732
SSDEEP

786432:x5Y4ntUOJwPxk7Q8cMr5LHBNI2SFDLXhWs6yWN+vV4hJei6Y99wDnvkFJtrSI:vY4tUtxV8cM9BN1SF916xN+q56YwDvkM

Score

6^/10

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Trojan.Siggen21.1874.13361.18609.msi
- Size
  
  44.0MB
- MD5
  
  6a4b83674db39468c27616888fc10cab
- SHA1
  
  c46c674465c3a0e68710b7932a63cdd87cb32e7d
- SHA256
  
  32c691936fd1d4e5829866f1a5e84ee1f91abdf0eeb09638ed9b8b44a5dc7980
- SHA512
  
  048ba6db20f7e541e799a2ae80280b37b7446b2e0ffce32ab2f22a8395480a4a852acecbf4277fd892d5ee70672f3f0ff8e657d411a5cd658b1d4441f05c4732
- SSDEEP
  
  786432:x5Y4ntUOJwPxk7Q8cMr5LHBNI2SFDLXhWs6yWN+vV4hJei6Y99wDnvkFJtrSI:vY4tUtxV8cM9BN1SF916xN+q56YwDvkM
Score

6^/10
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2