00895107e25485d3536c8898fc8b24e0dd6ec84461bebc705497b06bcf5dbe52 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

00895107e25485d3536c8898fc8b24e0dd6ec84461bebc705497b06bcf5dbe52
Size

1.7MB
Sample

240417-vgh6zsga57
MD5

816d76d1e1377546ba1521373f912255
SHA1

da353cdf0091505b3ca4dbf251eb47c2bcbb6e0a
SHA256

00895107e25485d3536c8898fc8b24e0dd6ec84461bebc705497b06bcf5dbe52
SHA512

5814bfb957f28ce49bc4c1dc0b12140555286ac36927d1f6200fe7812fed4f62c794c31a6987ec07518ef06f57699c5ec72aa7253efcb937e822b6004d5b281c
SSDEEP

49152:c7xFdZ6npCxnngx1oZ7zIFqrFG2RFzbh:8BxnkoZ79n

Score

7^/10

Malware Config

Targets

- Target
  
  00895107e25485d3536c8898fc8b24e0dd6ec84461bebc705497b06bcf5dbe52
- Size
  
  1.7MB
- MD5
  
  816d76d1e1377546ba1521373f912255
- SHA1
  
  da353cdf0091505b3ca4dbf251eb47c2bcbb6e0a
- SHA256
  
  00895107e25485d3536c8898fc8b24e0dd6ec84461bebc705497b06bcf5dbe52
- SHA512
  
  5814bfb957f28ce49bc4c1dc0b12140555286ac36927d1f6200fe7812fed4f62c794c31a6987ec07518ef06f57699c5ec72aa7253efcb937e822b6004d5b281c
- SSDEEP
  
  49152:c7xFdZ6npCxnngx1oZ7zIFqrFG2RFzbh:8BxnkoZ79n
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2