1abbb3947ae01ad0babb9ae82b5875f976c8df1da25d14838a31e285c0aa07f5 | Triage

Sharing

General

Target

1abbb3947ae01ad0babb9ae82b5875f976c8df1da25d14838a31e285c0aa07f5
Size

176KB
Sample

240510-qg27msbf62
MD5

401e8a990286a11259321ecbf63b09bd
SHA1

f8fc744fa28f1e35f138ac39f3ae3638635f7e4a
SHA256

1abbb3947ae01ad0babb9ae82b5875f976c8df1da25d14838a31e285c0aa07f5
SHA512

505bfa7147e982068ba29d91bcc8e00c5024bd48e801f93fa0860d849ab7a3a60da8b08ff4786e0099a2103b5f29dc57f4fcc06087be1cf6192998f29497a041
SSDEEP

3072:CftffjmNzzQpgLQHVdLoSewS7fRlDvggtJ6xYlcv9Wielt5WWD/3FMo+S8ovOGaL:SVfjmNzzIB0ZqNv

Score

7^/10

Malware Config

Targets

- Target
  
  1abbb3947ae01ad0babb9ae82b5875f976c8df1da25d14838a31e285c0aa07f5
- Size
  
  176KB
- MD5
  
  401e8a990286a11259321ecbf63b09bd
- SHA1
  
  f8fc744fa28f1e35f138ac39f3ae3638635f7e4a
- SHA256
  
  1abbb3947ae01ad0babb9ae82b5875f976c8df1da25d14838a31e285c0aa07f5
- SHA512
  
  505bfa7147e982068ba29d91bcc8e00c5024bd48e801f93fa0860d849ab7a3a60da8b08ff4786e0099a2103b5f29dc57f4fcc06087be1cf6192998f29497a041
- SSDEEP
  
  3072:CftffjmNzzQpgLQHVdLoSewS7fRlDvggtJ6xYlcv9Wielt5WWD/3FMo+S8ovOGaL:SVfjmNzzIB0ZqNv
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2