1b681805714dca807e4c4e5d625cfdd18a9cc60f26ed3f105cb8db996bca999d | Triage

Sharing

General

Target

1b681805714dca807e4c4e5d625cfdd18a9cc60f26ed3f105cb8db996bca999d
Size

387KB
Sample

240418-g14p5sdd49
MD5

0abbe3bd344e67b0bc54b886949d17de
SHA1

c9640320888b79b7fd998137a2518ecc33974899
SHA256

1b681805714dca807e4c4e5d625cfdd18a9cc60f26ed3f105cb8db996bca999d
SHA512

9c785be0601fbd5a255b17a3bc9a3e50c54d0092a141ce580ec7178efdc0e3a18a875aebf1d8dc378c8d270d67e2400f87da22b428ce2b8bb9db456363e71208
SSDEEP

6144:wVfjmNaYVGfI8iej2CSwBmsYJ66UGLilZIN107HFxHG7:a7+aYVGPic2CA6w4xx

Score

7^/10

Malware Config

Targets

- Target
  
  1b681805714dca807e4c4e5d625cfdd18a9cc60f26ed3f105cb8db996bca999d
- Size
  
  387KB
- MD5
  
  0abbe3bd344e67b0bc54b886949d17de
- SHA1
  
  c9640320888b79b7fd998137a2518ecc33974899
- SHA256
  
  1b681805714dca807e4c4e5d625cfdd18a9cc60f26ed3f105cb8db996bca999d
- SHA512
  
  9c785be0601fbd5a255b17a3bc9a3e50c54d0092a141ce580ec7178efdc0e3a18a875aebf1d8dc378c8d270d67e2400f87da22b428ce2b8bb9db456363e71208
- SSDEEP
  
  6144:wVfjmNaYVGfI8iej2CSwBmsYJ66UGLilZIN107HFxHG7:a7+aYVGPic2CA6w4xx
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2