64f0d4c3a9bfe859512f23e615fa499bcd574a01a2ee85b465ae518e4cac2c83 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

64f0d4c3a9bfe859512f23e615fa499bcd574a01a2ee85b465ae518e4cac2c83
Size

2.6MB
Sample

240510-rqnw2sdf83
MD5

b8b7ed5cac81ef3ad9742a82b875133b
SHA1

2de075e6c16477d684cf9c363524998cabff4e2e
SHA256

64f0d4c3a9bfe859512f23e615fa499bcd574a01a2ee85b465ae518e4cac2c83
SHA512

649770cc14576153d74bd2618cb3a49894a20f90733bf07b7737063d4b8f29d096c5fbbeb77beb09ca439714ce212ca487f9fc5155a86ec911380c6ed687edb6
SSDEEP

49152:s0R/KpmZubPf2S8W2ILeWl+C1p9jWy5Snd0eigXNC:t/jtYLP1Sy5E0x

Score

7^/10

Malware Config

Targets

- Target
  
  64f0d4c3a9bfe859512f23e615fa499bcd574a01a2ee85b465ae518e4cac2c83
- Size
  
  2.6MB
- MD5
  
  b8b7ed5cac81ef3ad9742a82b875133b
- SHA1
  
  2de075e6c16477d684cf9c363524998cabff4e2e
- SHA256
  
  64f0d4c3a9bfe859512f23e615fa499bcd574a01a2ee85b465ae518e4cac2c83
- SHA512
  
  649770cc14576153d74bd2618cb3a49894a20f90733bf07b7737063d4b8f29d096c5fbbeb77beb09ca439714ce212ca487f9fc5155a86ec911380c6ed687edb6
- SSDEEP
  
  49152:s0R/KpmZubPf2S8W2ILeWl+C1p9jWy5Snd0eigXNC:t/jtYLP1Sy5E0x
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2