d64ec18b2b044c690b88010aa18cbf5c7d0fac3842c13d87fb35d7f7773a3fd4 | Triage

Sharing

General

Target

d64ec18b2b044c690b88010aa18cbf5c7d0fac3842c13d87fb35d7f7773a3fd4
Size

189KB
Sample

240704-14jnxssbmq
MD5

726630029c949f5fcab0c96fa45d7971
SHA1

a4c35f19a43940bc7da3f23be1e6377caa0a34b4
SHA256

d64ec18b2b044c690b88010aa18cbf5c7d0fac3842c13d87fb35d7f7773a3fd4
SHA512

1594b0f2ea380c529a1dfef9e7cfa5d4a4332288fee28c6781931fd20b20b082f1efb73a70c8f261f90716b73337592f399edc394db599503d1930dd5c535b4e
SSDEEP

3072:p3kuJVLvstYgr0rKBXQDqDLA7h+qfHLXrYUvZ5lDjKwnmrS:yuJKyyLA7gqHLbYUvcw

Score

7^/10

Malware Config

Targets

- Target
  
  d64ec18b2b044c690b88010aa18cbf5c7d0fac3842c13d87fb35d7f7773a3fd4
- Size
  
  189KB
- MD5
  
  726630029c949f5fcab0c96fa45d7971
- SHA1
  
  a4c35f19a43940bc7da3f23be1e6377caa0a34b4
- SHA256
  
  d64ec18b2b044c690b88010aa18cbf5c7d0fac3842c13d87fb35d7f7773a3fd4
- SHA512
  
  1594b0f2ea380c529a1dfef9e7cfa5d4a4332288fee28c6781931fd20b20b082f1efb73a70c8f261f90716b73337592f399edc394db599503d1930dd5c535b4e
- SSDEEP
  
  3072:p3kuJVLvstYgr0rKBXQDqDLA7h+qfHLXrYUvZ5lDjKwnmrS:yuJKyyLA7gqHLbYUvcw
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2