dfb7b44bb0d17ea8e1041fd012fc5c89a6d1d7c10fe7a7805c0134a07e7b6766 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dfb7b44bb0d17ea8e1041fd012fc5c89a6d1d7c10fe7a7805c0134a07e7b6766
Size

2.1MB
Sample

240719-aa4twswdrh
MD5

14bdd80a78d22e859f3beabfdfec953f
SHA1

c2db58a2f591e676c6675cc660980dbd4f6eb3e9
SHA256

dfb7b44bb0d17ea8e1041fd012fc5c89a6d1d7c10fe7a7805c0134a07e7b6766
SHA512

9757601bd8aeef1debf85556c98c5e28b6104c446393d0c51a6c35407df2ad6970d6a7568644a8159e4bb245a6c91dcb4dafa8e20e1900ca228a17ff6c8c829e
SSDEEP

49152:YOoP/iZtI3UL5tj1XUNgASK4CTfVf1WZ62U//of6VwcNc+0eW3hz/1bmgZO:7oGY/orcUnu

Score

7^/10

Malware Config

Targets

- Target
  
  dfb7b44bb0d17ea8e1041fd012fc5c89a6d1d7c10fe7a7805c0134a07e7b6766
- Size
  
  2.1MB
- MD5
  
  14bdd80a78d22e859f3beabfdfec953f
- SHA1
  
  c2db58a2f591e676c6675cc660980dbd4f6eb3e9
- SHA256
  
  dfb7b44bb0d17ea8e1041fd012fc5c89a6d1d7c10fe7a7805c0134a07e7b6766
- SHA512
  
  9757601bd8aeef1debf85556c98c5e28b6104c446393d0c51a6c35407df2ad6970d6a7568644a8159e4bb245a6c91dcb4dafa8e20e1900ca228a17ff6c8c829e
- SSDEEP
  
  49152:YOoP/iZtI3UL5tj1XUNgASK4CTfVf1WZ62U//of6VwcNc+0eW3hz/1bmgZO:7oGY/orcUnu
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2