b7e578e7d2c4ff3d5eb14d2257386303e6b09b27fd5e15d4e7fdf0b09fb06620 | Triage

Sharing

General

Target

b7e578e7d2c4ff3d5eb14d2257386303e6b09b27fd5e15d4e7fdf0b09fb06620
Size

203KB
Sample

240418-glxy2sda28
MD5

9f6b12e00540dbe57a6cbe8cb92760f2
SHA1

80216567175994a7bfbae9c6452e17bf5bee689e
SHA256

b7e578e7d2c4ff3d5eb14d2257386303e6b09b27fd5e15d4e7fdf0b09fb06620
SHA512

0e8e9b98dc6291b7e493a3b5d8fffe11f29b06b0639890a85828d265e4d459ec3fce3ad9e5720f9a258d49dfd5cd309a2d5ab985079b7990a03a6b1ac767dd4c
SSDEEP

3072:C5ftffjmNqfJlhxZ8sHlZgte98JmvSxEyyyyyyyyyCyyyyyyyyFfHZ8sHlZgteTz:MVfjmN2hvn98gKxs5nT80

Score

7^/10

Malware Config

Targets

- Target
  
  b7e578e7d2c4ff3d5eb14d2257386303e6b09b27fd5e15d4e7fdf0b09fb06620
- Size
  
  203KB
- MD5
  
  9f6b12e00540dbe57a6cbe8cb92760f2
- SHA1
  
  80216567175994a7bfbae9c6452e17bf5bee689e
- SHA256
  
  b7e578e7d2c4ff3d5eb14d2257386303e6b09b27fd5e15d4e7fdf0b09fb06620
- SHA512
  
  0e8e9b98dc6291b7e493a3b5d8fffe11f29b06b0639890a85828d265e4d459ec3fce3ad9e5720f9a258d49dfd5cd309a2d5ab985079b7990a03a6b1ac767dd4c
- SSDEEP
  
  3072:C5ftffjmNqfJlhxZ8sHlZgte98JmvSxEyyyyyyyyyCyyyyyyyyFfHZ8sHlZgteTz:MVfjmN2hvn98gKxs5nT80
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2