21b2fe6f61a3addeefd5375d6b9220016c9d0de6df80242c2771c0c2c24d6d55 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21b2fe6f61a3addeefd5375d6b9220016c9d0de6df80242c2771c0c2c24d6d55
Size

1.6MB
Sample

240721-wd1gjaxdme
MD5

a51b6ea36c95074022a1d75cf50ff03d
SHA1

68d264386d390d0f8395895d69ec1d629c4d0361
SHA256

21b2fe6f61a3addeefd5375d6b9220016c9d0de6df80242c2771c0c2c24d6d55
SHA512

7df03e9ff1d4dd7d2376d7274cbc201b449aea002d7a4a543dd2b06502b42931db49b50629d2d50de569b907b1aca038a497ff81ecd2b853b6dac899b12b37ca
SSDEEP

24576:97+ruBJ+lZfz3ObxtBEImd0fcU0vbC50j1Z8bDeL/EapfnGmnIV6BU8SHD1NJcjl:97xSd0fcU0vbCWjM2L/E0nGmZUnHRWt

Score

7^/10

Malware Config

Targets

- Target
  
  21b2fe6f61a3addeefd5375d6b9220016c9d0de6df80242c2771c0c2c24d6d55
- Size
  
  1.6MB
- MD5
  
  a51b6ea36c95074022a1d75cf50ff03d
- SHA1
  
  68d264386d390d0f8395895d69ec1d629c4d0361
- SHA256
  
  21b2fe6f61a3addeefd5375d6b9220016c9d0de6df80242c2771c0c2c24d6d55
- SHA512
  
  7df03e9ff1d4dd7d2376d7274cbc201b449aea002d7a4a543dd2b06502b42931db49b50629d2d50de569b907b1aca038a497ff81ecd2b853b6dac899b12b37ca
- SSDEEP
  
  24576:97+ruBJ+lZfz3ObxtBEImd0fcU0vbC50j1Z8bDeL/EapfnGmnIV6BU8SHD1NJcjl:97xSd0fcU0vbCWjM2L/E0nGmZUnHRWt
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2