89e2acf38017617c1e9b2fe279bb64bb910ca0f04078770ae348f0806455bfab | Triage

Sharing

General

Target

89e2acf38017617c1e9b2fe279bb64bb910ca0f04078770ae348f0806455bfab
Size

565KB
Sample

240418-klwmrshf4w
MD5

f1973fc951f97973096fc9f5e2fc56a2
SHA1

b133bd551e3b526016c28c66fbac7a2d922b32ab
SHA256

89e2acf38017617c1e9b2fe279bb64bb910ca0f04078770ae348f0806455bfab
SHA512

da586347fedb8f5b79af0dd32be0d6266100650125c42e103547c2f8119d2697225013528e4644868106e9b130804c58110a80a248d09afe1a6b74200c26309d
SSDEEP

12288:D8Gj11/IH1C2kp64AXhQJl2Nw+1ubLkgJ:D8GR1/gfkp64ARaT+IbLkgJ

Score

7^/10

Malware Config

Targets

- Target
  
  89e2acf38017617c1e9b2fe279bb64bb910ca0f04078770ae348f0806455bfab
- Size
  
  565KB
- MD5
  
  f1973fc951f97973096fc9f5e2fc56a2
- SHA1
  
  b133bd551e3b526016c28c66fbac7a2d922b32ab
- SHA256
  
  89e2acf38017617c1e9b2fe279bb64bb910ca0f04078770ae348f0806455bfab
- SHA512
  
  da586347fedb8f5b79af0dd32be0d6266100650125c42e103547c2f8119d2697225013528e4644868106e9b130804c58110a80a248d09afe1a6b74200c26309d
- SSDEEP
  
  12288:D8Gj11/IH1C2kp64AXhQJl2Nw+1ubLkgJ:D8GR1/gfkp64ARaT+IbLkgJ
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2