99d4c7c7f3a799405071e38558df27d3f7f48da579ea0de0f45fab32c5bf7709 | Triage

Sharing

General

Target

99d4c7c7f3a799405071e38558df27d3f7f48da579ea0de0f45fab32c5bf7709
Size

713KB
Sample

240624-yg5xjasgpj
MD5

c4f45ca67af2e0e0948a158240be3302
SHA1

b77bfff9b8d969267552500b555fb5948df49c47
SHA256

99d4c7c7f3a799405071e38558df27d3f7f48da579ea0de0f45fab32c5bf7709
SHA512

dc83d507aa676d16119f55555886c975bd137931d478ae162fea08c71b71755f269ed14cb540c1d7a8f098347860aeedf5621547b6956f2a8e13af0bb7e8dc8d
SSDEEP

12288:YtgfC6Aj+TN5uixZN+8rKhUdTC/wE1ZD0Ca5ZIXV:AMLOS2opPIXV

Score

7^/10

Malware Config

Targets

- Target
  
  99d4c7c7f3a799405071e38558df27d3f7f48da579ea0de0f45fab32c5bf7709
- Size
  
  713KB
- MD5
  
  c4f45ca67af2e0e0948a158240be3302
- SHA1
  
  b77bfff9b8d969267552500b555fb5948df49c47
- SHA256
  
  99d4c7c7f3a799405071e38558df27d3f7f48da579ea0de0f45fab32c5bf7709
- SHA512
  
  dc83d507aa676d16119f55555886c975bd137931d478ae162fea08c71b71755f269ed14cb540c1d7a8f098347860aeedf5621547b6956f2a8e13af0bb7e8dc8d
- SSDEEP
  
  12288:YtgfC6Aj+TN5uixZN+8rKhUdTC/wE1ZD0Ca5ZIXV:AMLOS2opPIXV
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2