bf071c8609802f65261675176e2ce580c6252d4b4e8afa079c454ea93a1e7b4f | Triage

Sharing

General

Target

bf071c8609802f65261675176e2ce580c6252d4b4e8afa079c454ea93a1e7b4f
Size

262KB
Sample

240420-rkfy9aad47
MD5

bfa95e9513b0a4f93af568c83e27b54a
SHA1

47a95d0b08e6ef79d99ffc6d5fa7e16c8cd4317c
SHA256

bf071c8609802f65261675176e2ce580c6252d4b4e8afa079c454ea93a1e7b4f
SHA512

475b2b4621647b7434c027c2c845aef6bf1be21aacec4e7baa0e04b47ad333520e0680a648a6203721208d78c147d2336ba4d376b89a05810ab76ed570b56c82
SSDEEP

3072:q6VOv+Kq7XVLRkgUA1nQZwFGVO4Mqg+WDY:bKq7FLRp1nQ4QLd

Score

7^/10

Malware Config

Targets

- Target
  
  bf071c8609802f65261675176e2ce580c6252d4b4e8afa079c454ea93a1e7b4f
- Size
  
  262KB
- MD5
  
  bfa95e9513b0a4f93af568c83e27b54a
- SHA1
  
  47a95d0b08e6ef79d99ffc6d5fa7e16c8cd4317c
- SHA256
  
  bf071c8609802f65261675176e2ce580c6252d4b4e8afa079c454ea93a1e7b4f
- SHA512
  
  475b2b4621647b7434c027c2c845aef6bf1be21aacec4e7baa0e04b47ad333520e0680a648a6203721208d78c147d2336ba4d376b89a05810ab76ed570b56c82
- SSDEEP
  
  3072:q6VOv+Kq7XVLRkgUA1nQZwFGVO4Mqg+WDY:bKq7FLRp1nQ4QLd
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2