General

  • Target

    17543028437.zip

  • Size

    1.0MB

  • Sample

    240603-j2brvsaa68

  • MD5

    5de6b0340fb683a00ff7e3be28f184ce

  • SHA1

    1072d906537b8c7c7d9e220b41e388da5a1897bc

  • SHA256

    4b94fe660e5e3a3b33dec8bf0b89cefd54a043cf01b8cfd20e0a5bb939d7d0c5

  • SHA512

    978e631c9ad9ad36105a4e59d850037d51d97a5983f420b2350005d0b1c1ce5cbd30fba0df68828797f32771f422b1b393ab994a9b3756787b6a7d0141fcc033

  • SSDEEP

    24576:cNNlQxcJN61n34DYblLGxLUkQ5HAs0hKndreVklwX77zhHDZX/nE79KH2jCsZK:cnN61bsgd2wdreKuX77zpDde9KHR

Score
8/10

Malware Config

Targets

    • Target

      b556bb94e138c7f58cde15b1f1ac7f89ee87e9ccd33250c61cbcbae8db183434

    • Size

      2.2MB

    • MD5

      bcfa5c3f6576f10863ff2239ac064526

    • SHA1

      0989642cbc8b1d7cfe43a55914f03823df1e95a8

    • SHA256

      b556bb94e138c7f58cde15b1f1ac7f89ee87e9ccd33250c61cbcbae8db183434

    • SHA512

      b86bee3e14b9c0f25435328501e2ac832aa2d1efa3c00decd2628b6163dac383dbf41c1ba579646987f931c5c009a71712c9a96181e2a8f15ebed6f188d6d7eb

    • SSDEEP

      49152:+WKRFfV5tLPGYzLFoc25e6+f/8J05wXIARgguIGUMBz5Hx:SlpPG6LfIGU

    Score
    8/10
    • Command and Scripting Interpreter: PowerShell

      Using powershell.exe command.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks