2ab2cf91f6f3587bd8796c3dc502a2d9c37f6c7ec07a47cebf6640d631ee0102 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ab2cf91f6f3587bd8796c3dc502a2d9c37f6c7ec07a47cebf6640d631ee0102
Size

3.3MB
Sample

240517-g4dywsdc8x
MD5

f4677d9a0a7c8cbd95dd22438476ed8a
SHA1

c8217749384e78f5048dddb8029e4f3b55d603e6
SHA256

2ab2cf91f6f3587bd8796c3dc502a2d9c37f6c7ec07a47cebf6640d631ee0102
SHA512

a1a21e6750a20f37b93571b8e3d2f98eb0915a392cec8c5ea097f01cace7c53f0b22457c4e7bccc11052d392eda173ab8c7ed0cbe668357954a92cb8bb88b19d
SSDEEP

49152:c7ZN9rMt/oCFx3TDl5uCDl5q4CiEmoFA/SmhiIpk:CMeCHTuGqSEoS9

Score

7^/10

Malware Config

Targets

- Target
  
  2ab2cf91f6f3587bd8796c3dc502a2d9c37f6c7ec07a47cebf6640d631ee0102
- Size
  
  3.3MB
- MD5
  
  f4677d9a0a7c8cbd95dd22438476ed8a
- SHA1
  
  c8217749384e78f5048dddb8029e4f3b55d603e6
- SHA256
  
  2ab2cf91f6f3587bd8796c3dc502a2d9c37f6c7ec07a47cebf6640d631ee0102
- SHA512
  
  a1a21e6750a20f37b93571b8e3d2f98eb0915a392cec8c5ea097f01cace7c53f0b22457c4e7bccc11052d392eda173ab8c7ed0cbe668357954a92cb8bb88b19d
- SSDEEP
  
  49152:c7ZN9rMt/oCFx3TDl5uCDl5q4CiEmoFA/SmhiIpk:CMeCHTuGqSEoS9
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2