5e5cb0625435890f97c29b0043d1313b69bfd71a26d0ebe6b9ad52d1bfc5b368 | Triage

Sharing

General

Target

5e5cb0625435890f97c29b0043d1313b69bfd71a26d0ebe6b9ad52d1bfc5b368
Size

2.8MB
Sample

240427-xzm9rsef46
MD5

3e9df46a946ccb96b868bcb0cee78ec9
SHA1

80f2d00e4d3227ef14efd8a859a7224a87dc7464
SHA256

5e5cb0625435890f97c29b0043d1313b69bfd71a26d0ebe6b9ad52d1bfc5b368
SHA512

44ea38fcfd4869d35fd9f3bbadb400339754236f991baf035fd9a02d557fda91758e7a63156a96aeab63cc6dfb98398be1fee531ba2224b94c8e0c84811b30dc
SSDEEP

49152:y6gLKJuMarhVnMFwTH8/giBiBcbk4ZxZ2DqFeVMhuxcPh:Xd1XdhBiiMa7

Score

7^/10

Malware Config

Targets

- Target
  
  5e5cb0625435890f97c29b0043d1313b69bfd71a26d0ebe6b9ad52d1bfc5b368
- Size
  
  2.8MB
- MD5
  
  3e9df46a946ccb96b868bcb0cee78ec9
- SHA1
  
  80f2d00e4d3227ef14efd8a859a7224a87dc7464
- SHA256
  
  5e5cb0625435890f97c29b0043d1313b69bfd71a26d0ebe6b9ad52d1bfc5b368
- SHA512
  
  44ea38fcfd4869d35fd9f3bbadb400339754236f991baf035fd9a02d557fda91758e7a63156a96aeab63cc6dfb98398be1fee531ba2224b94c8e0c84811b30dc
- SSDEEP
  
  49152:y6gLKJuMarhVnMFwTH8/giBiBcbk4ZxZ2DqFeVMhuxcPh:Xd1XdhBiiMa7
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2