20ab20963ddf622a1f9ff19bfef0bc7e5600cd3cd31f9108cc99329139a822b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

20ab20963ddf622a1f9ff19bfef0bc7e5600cd3cd31f9108cc99329139a822b1
Size

227KB
Sample

240530-d3qdradh43
MD5

4ad00b7cad00e4a8dd2b1bdd07cd063e
SHA1

9fcc85635784ed09f89f812d8524e47a0b2b8de6
SHA256

20ab20963ddf622a1f9ff19bfef0bc7e5600cd3cd31f9108cc99329139a822b1
SHA512

ee1bef7a7703fc77fd1ae75a40c69673f8baaa426d74c9b3a956adb8a2dafb21aeba59b2bc364b26ffde7390dc218f5d28b5f545d8be98f7be62bdb3d06306b2
SSDEEP

3072:pEkuJVLUdeKzC/lzMPySe8DnpeIPipoHbKvXWXz9LRnsaJUS+6wPXD3fxNW7gq5n:PuJWdeKzC/leySe8AIqpoHbnDns1ND9m

Score

7^/10

Malware Config

Targets

- Target
  
  20ab20963ddf622a1f9ff19bfef0bc7e5600cd3cd31f9108cc99329139a822b1
- Size
  
  227KB
- MD5
  
  4ad00b7cad00e4a8dd2b1bdd07cd063e
- SHA1
  
  9fcc85635784ed09f89f812d8524e47a0b2b8de6
- SHA256
  
  20ab20963ddf622a1f9ff19bfef0bc7e5600cd3cd31f9108cc99329139a822b1
- SHA512
  
  ee1bef7a7703fc77fd1ae75a40c69673f8baaa426d74c9b3a956adb8a2dafb21aeba59b2bc364b26ffde7390dc218f5d28b5f545d8be98f7be62bdb3d06306b2
- SSDEEP
  
  3072:pEkuJVLUdeKzC/lzMPySe8DnpeIPipoHbKvXWXz9LRnsaJUS+6wPXD3fxNW7gq5n:PuJWdeKzC/leySe8AIqpoHbnDns1ND9m
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2