fcf16161c30cf0538959484015951c755c8bc8d886c36a3d92b5102b5ab4376d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fcf16161c30cf0538959484015951c755c8bc8d886c36a3d92b5102b5ab4376d
Size

391KB
Sample

240719-wftf1awflh
MD5

4074e5a7ff8ec9f8b2e7cc686d686036
SHA1

e640bc899616efeb81a1da4a95be3b1f4a65cc8f
SHA256

fcf16161c30cf0538959484015951c755c8bc8d886c36a3d92b5102b5ab4376d
SHA512

1883b222010cc40d19b41be6ffcd345378ede42c8ff37096503f6a8204c7e3690d87ed6f342e9343c0c4cb56cb860690ba98acd3b1dca20b88bb0f2c0f262248
SSDEEP

6144:nFp8nDXYQ/BWJjmpgtBZQZKQj8p3jyb7HREd4SZ1tzLbF:Fp8DXYJmSTZwYp32bY4qtDF

Score

7^/10

Malware Config

Targets

- Target
  
  fcf16161c30cf0538959484015951c755c8bc8d886c36a3d92b5102b5ab4376d
- Size
  
  391KB
- MD5
  
  4074e5a7ff8ec9f8b2e7cc686d686036
- SHA1
  
  e640bc899616efeb81a1da4a95be3b1f4a65cc8f
- SHA256
  
  fcf16161c30cf0538959484015951c755c8bc8d886c36a3d92b5102b5ab4376d
- SHA512
  
  1883b222010cc40d19b41be6ffcd345378ede42c8ff37096503f6a8204c7e3690d87ed6f342e9343c0c4cb56cb860690ba98acd3b1dca20b88bb0f2c0f262248
- SSDEEP
  
  6144:nFp8nDXYQ/BWJjmpgtBZQZKQj8p3jyb7HREd4SZ1tzLbF:Fp8DXYJmSTZwYp32bY4qtDF
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2