65afd31f1c3bbbb7f532bbb1c78e7ecd8966c0bcc914955c0a063ff8b05af959 | Triage

Sharing

General

Target

65afd31f1c3bbbb7f532bbb1c78e7ecd8966c0bcc914955c0a063ff8b05af959
Size

1.0MB
Sample

240417-znn32afb4s
MD5

c20dfdf6ea8686b22a1ac0eb07485ee3
SHA1

0f64a5c54cbcaada6294b631fa2791c31a14b331
SHA256

65afd31f1c3bbbb7f532bbb1c78e7ecd8966c0bcc914955c0a063ff8b05af959
SHA512

8e87a89a4a81829a56d3e590ac297129ee35d02edef0a7e9fd82237ffc7d8427039495f86d31fb09092782f4d71c8f360681700e47e46d657e28599488887155
SSDEEP

12288:e7+aG8YPiCVkBTPZrlgcVHuJtzVu+0TD1qsWQGGBK5xoOJKWoUDvvnB:e7z3KkBlLuJ0gaBK5W69oYnB

Score

7^/10

Malware Config

Targets

- Target
  
  65afd31f1c3bbbb7f532bbb1c78e7ecd8966c0bcc914955c0a063ff8b05af959
- Size
  
  1.0MB
- MD5
  
  c20dfdf6ea8686b22a1ac0eb07485ee3
- SHA1
  
  0f64a5c54cbcaada6294b631fa2791c31a14b331
- SHA256
  
  65afd31f1c3bbbb7f532bbb1c78e7ecd8966c0bcc914955c0a063ff8b05af959
- SHA512
  
  8e87a89a4a81829a56d3e590ac297129ee35d02edef0a7e9fd82237ffc7d8427039495f86d31fb09092782f4d71c8f360681700e47e46d657e28599488887155
- SSDEEP
  
  12288:e7+aG8YPiCVkBTPZrlgcVHuJtzVu+0TD1qsWQGGBK5xoOJKWoUDvvnB:e7z3KkBlLuJ0gaBK5W69oYnB
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2