e3f3bb6e1687f594fa2866c0c1191b9e61413ab4f10ba5e69224f14a229b0d41 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28dc0ddbb81b93de4f16383c7bc2e930N.exe
Size

589KB
Sample

240713-bzassazdqn
MD5

28dc0ddbb81b93de4f16383c7bc2e930
SHA1

100e0e2234d40301838da48aba98e67329e94f88
SHA256

e3f3bb6e1687f594fa2866c0c1191b9e61413ab4f10ba5e69224f14a229b0d41
SHA512

70d53877548478a64b6c7b54c49350daa8732b1fb530076fa4e8407d0a913ca2aaf86080f4f7d3d1c1a0ad366db1d44678e813af2f0137e2260abb8a41a8c13d
SSDEEP

3072:ytftffhJCu/IOC2ioCUig6aO045l1pTBlZcCk75tggKH8LAxgwT7:y9Vfhgu/ODUig6qOTXOHVKgbMg8

Score

7^/10

Malware Config

Targets

- Target
  
  28dc0ddbb81b93de4f16383c7bc2e930N.exe
- Size
  
  589KB
- MD5
  
  28dc0ddbb81b93de4f16383c7bc2e930
- SHA1
  
  100e0e2234d40301838da48aba98e67329e94f88
- SHA256
  
  e3f3bb6e1687f594fa2866c0c1191b9e61413ab4f10ba5e69224f14a229b0d41
- SHA512
  
  70d53877548478a64b6c7b54c49350daa8732b1fb530076fa4e8407d0a913ca2aaf86080f4f7d3d1c1a0ad366db1d44678e813af2f0137e2260abb8a41a8c13d
- SSDEEP
  
  3072:ytftffhJCu/IOC2ioCUig6aO045l1pTBlZcCk75tggKH8LAxgwT7:y9Vfhgu/ODUig6qOTXOHVKgbMg8
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2