27fcf71916ebd85194fad1fb86b48650ce4702a9b060ad026fbb7bc0ea91d41b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27fcf71916ebd85194fad1fb86b48650ce4702a9b060ad026fbb7bc0ea91d41b
Size

248KB
Sample

240417-w6q4kabe4z
MD5

af9b0e452328b865bc689fae98a0af3c
SHA1

2dcbb10f81984ccba9945a4b26c33daa56e7c9ba
SHA256

27fcf71916ebd85194fad1fb86b48650ce4702a9b060ad026fbb7bc0ea91d41b
SHA512

05b6d6b3e9892d24841657c9aa7eade636ead3e8b685b8931ed5665a403e1ac6a4110b0df314007652477cc0028dbdd10a7c6e7db4a48310a05c37fb32cee4a2
SSDEEP

3072:+ftffjmN5uJIt622VgyheoNuKWElCvHJ0nCIg0PlXXgTh39lZvlqyjNgK1dAjYan:mVfjmN9p2VVhewuVkCfFL3v4ySK13ao4

Score

7^/10

Malware Config

Targets

- Target
  
  27fcf71916ebd85194fad1fb86b48650ce4702a9b060ad026fbb7bc0ea91d41b
- Size
  
  248KB
- MD5
  
  af9b0e452328b865bc689fae98a0af3c
- SHA1
  
  2dcbb10f81984ccba9945a4b26c33daa56e7c9ba
- SHA256
  
  27fcf71916ebd85194fad1fb86b48650ce4702a9b060ad026fbb7bc0ea91d41b
- SHA512
  
  05b6d6b3e9892d24841657c9aa7eade636ead3e8b685b8931ed5665a403e1ac6a4110b0df314007652477cc0028dbdd10a7c6e7db4a48310a05c37fb32cee4a2
- SSDEEP
  
  3072:+ftffjmN5uJIt622VgyheoNuKWElCvHJ0nCIg0PlXXgTh39lZvlqyjNgK1dAjYan:mVfjmN9p2VVhewuVkCfFL3v4ySK13ao4
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2