191494daaf39d1e7765668e72ebb91886e8dce6a6ca8a3b765f9903dcbd1e85a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

191494daaf39d1e7765668e72ebb91886e8dce6a6ca8a3b765f9903dcbd1e85a
Size

292KB
Sample

240503-17j4vsff91
MD5

09961a2d4aa5be561f9e43ce538e88c7
SHA1

94c331c7d6e6d988094b32c3a2f62d3968d5201a
SHA256

191494daaf39d1e7765668e72ebb91886e8dce6a6ca8a3b765f9903dcbd1e85a
SHA512

c4722ab39b7c4bcbad537ae743683c30d38be624c1725b57c462f9816614ab18d02463cd408ca68da70780071e0bed101bbce20ce473c8a8f5ba04f328c3d3b0
SSDEEP

3072:TftffjmNUGNWHDzttk5pLzSMEjF47yctMYTWfYj9DfWxRmY7jyP0ejUl:jVfjmNZNmZtb4wNQBDfWxRvs0ewl

Score

7^/10

Malware Config

Targets

- Target
  
  191494daaf39d1e7765668e72ebb91886e8dce6a6ca8a3b765f9903dcbd1e85a
- Size
  
  292KB
- MD5
  
  09961a2d4aa5be561f9e43ce538e88c7
- SHA1
  
  94c331c7d6e6d988094b32c3a2f62d3968d5201a
- SHA256
  
  191494daaf39d1e7765668e72ebb91886e8dce6a6ca8a3b765f9903dcbd1e85a
- SHA512
  
  c4722ab39b7c4bcbad537ae743683c30d38be624c1725b57c462f9816614ab18d02463cd408ca68da70780071e0bed101bbce20ce473c8a8f5ba04f328c3d3b0
- SSDEEP
  
  3072:TftffjmNUGNWHDzttk5pLzSMEjF47yctMYTWfYj9DfWxRmY7jyP0ejUl:jVfjmNZNmZtb4wNQBDfWxRvs0ewl
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2