773fe664e1198b1c714819fcf7381fae3fb0a6fc342d8dd1c76a21bd426eeeee | Triage

Sharing

General

Target

773fe664e1198b1c714819fcf7381fae3fb0a6fc342d8dd1c76a21bd426eeeee
Size

14.6MB
Sample

240524-d5klaabe7x
MD5

fe68426c101539218495386138e7ac48
SHA1

f3f3e88d6ea0b43976d4878c7c36438106e1fbc7
SHA256

773fe664e1198b1c714819fcf7381fae3fb0a6fc342d8dd1c76a21bd426eeeee
SHA512

683b1d91b900632d7d762a99a11d9ead335567e6037e758633dd86027bc4bf657b0d142cc11f6be44b2f52d80114201d37c4d811bc1854921fc4acd2bc6a3d8e
SSDEEP

196608:QNym2iBYGfsV3zP/wYekZ1oKnMK6kJHqPbVruhmR/SACkCkyhXQ6ldGsTQN7pDzh:QN4H3/Jzn8EYpvCEzy

Score

9^/10

evasion

Malware Config

Targets

- Target
  
  773fe664e1198b1c714819fcf7381fae3fb0a6fc342d8dd1c76a21bd426eeeee
- Size
  
  14.6MB
- MD5
  
  fe68426c101539218495386138e7ac48
- SHA1
  
  f3f3e88d6ea0b43976d4878c7c36438106e1fbc7
- SHA256
  
  773fe664e1198b1c714819fcf7381fae3fb0a6fc342d8dd1c76a21bd426eeeee
- SHA512
  
  683b1d91b900632d7d762a99a11d9ead335567e6037e758633dd86027bc4bf657b0d142cc11f6be44b2f52d80114201d37c4d811bc1854921fc4acd2bc6a3d8e
- SSDEEP
  
  196608:QNym2iBYGfsV3zP/wYekZ1oKnMK6kJHqPbVruhmR/SACkCkyhXQ6ldGsTQN7pDzh:QN4H3/Jzn8EYpvCEzy
Score

9^/10

evasion
- Looks for VirtualBox Guest Additions in registry
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Virtualization/Sandbox Evasion

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2