b3138643334bf80fcd626ba1bb09362fab3a9e76d4aefd199e68fe6765e58730 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b3138643334bf80fcd626ba1bb09362fab3a9e76d4aefd199e68fe6765e58730
Size

824KB
Sample

240629-b52hpa1ekk
MD5

2adf1715b47ccc9ddb715fed1a76689e
SHA1

049dd297e048ed913bd8d7a551145d5c5cfee31b
SHA256

b3138643334bf80fcd626ba1bb09362fab3a9e76d4aefd199e68fe6765e58730
SHA512

ab82ecafe77a2dd3d082fd2fd1cc51ff0c23a1bf5578bef964232e343c0ba471a6709b5d4c1c495fc13b8eb085e23d42dde484defdec39d0d553d06f580a257b
SSDEEP

12288:swCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozEQ888888888888W8888888J:sNzCtUpQ9WWPBSSRMTEpXNK

Score

7^/10

Malware Config

Targets

- Target
  
  b3138643334bf80fcd626ba1bb09362fab3a9e76d4aefd199e68fe6765e58730
- Size
  
  824KB
- MD5
  
  2adf1715b47ccc9ddb715fed1a76689e
- SHA1
  
  049dd297e048ed913bd8d7a551145d5c5cfee31b
- SHA256
  
  b3138643334bf80fcd626ba1bb09362fab3a9e76d4aefd199e68fe6765e58730
- SHA512
  
  ab82ecafe77a2dd3d082fd2fd1cc51ff0c23a1bf5578bef964232e343c0ba471a6709b5d4c1c495fc13b8eb085e23d42dde484defdec39d0d553d06f580a257b
- SSDEEP
  
  12288:swCBtLC+EptUpQ9SeSChq3YvxFBSSRMT8PTp4ihozEQ888888888888W8888888J:sNzCtUpQ9WWPBSSRMTEpXNK
Score

7^/10
- Drops startup file
- Loads dropped DLL
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Replication Through Removable Media

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2