d7ff01923f66f0c2480391761e3e885c640df41c5d9935fbdad128471709d11e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d7ff01923f66f0c2480391761e3e885c640df41c5d9935fbdad128471709d11e
Size

3.0MB
Sample

240703-r2ykmatbrb
MD5

7068ca7ab0b08a45be3189616a0981ab
SHA1

13790b2b37df8542892db4838c1e8820cee9130a
SHA256

d7ff01923f66f0c2480391761e3e885c640df41c5d9935fbdad128471709d11e
SHA512

0fd2ebe99e3c2d817aa7783751a9ff2d45746c74fcb20ab884526315fa72ded74d039213c1ca0ca79eaf431eaf11788361ffa950ce25e9236bba6a53eb1df704
SSDEEP

49152:dOnKV1GmNiJNiBkvEzs/7PDiYBJqgnv46z7153rfdc:dwDYijiS/7PDiYBJxJ5dc

Score

7^/10

Malware Config

Targets

- Target
  
  d7ff01923f66f0c2480391761e3e885c640df41c5d9935fbdad128471709d11e
- Size
  
  3.0MB
- MD5
  
  7068ca7ab0b08a45be3189616a0981ab
- SHA1
  
  13790b2b37df8542892db4838c1e8820cee9130a
- SHA256
  
  d7ff01923f66f0c2480391761e3e885c640df41c5d9935fbdad128471709d11e
- SHA512
  
  0fd2ebe99e3c2d817aa7783751a9ff2d45746c74fcb20ab884526315fa72ded74d039213c1ca0ca79eaf431eaf11788361ffa950ce25e9236bba6a53eb1df704
- SSDEEP
  
  49152:dOnKV1GmNiJNiBkvEzs/7PDiYBJqgnv46z7153rfdc:dwDYijiS/7PDiYBJxJ5dc
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2