c88924e44221ec8e84ecd710f1ea04439d9adeba2bd32b0bbb2f7d8ac2d495b7 | Triage

Sharing

General

Target

261d31a7128be26ffaceffbc46c20b30N.exe
Size

492KB
Sample

240906-pb6r7svfrr
MD5

261d31a7128be26ffaceffbc46c20b30
SHA1

29af03f997e3ca19b46c3ecb32d66180877b1be0
SHA256

c88924e44221ec8e84ecd710f1ea04439d9adeba2bd32b0bbb2f7d8ac2d495b7
SHA512

4bb43cc4d7fb1cbda15310ca83a49fd4f9a761ab88fff8853dbc7579e6307ce94c5eaa47314bf351315eabf74e498af241e1eb2d273ca17fb13ebe5005f768e2
SSDEEP

6144:ewkhMv87Q9EFEc8FaSgbHtBxVRvYV7zL1uSb6VWi8FBo95qIGK3q0FhZyFPp4jWL:UPil6vRvYlzL1uSz/W5Gd

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  261d31a7128be26ffaceffbc46c20b30N.exe
- Size
  
  492KB
- MD5
  
  261d31a7128be26ffaceffbc46c20b30
- SHA1
  
  29af03f997e3ca19b46c3ecb32d66180877b1be0
- SHA256
  
  c88924e44221ec8e84ecd710f1ea04439d9adeba2bd32b0bbb2f7d8ac2d495b7
- SHA512
  
  4bb43cc4d7fb1cbda15310ca83a49fd4f9a761ab88fff8853dbc7579e6307ce94c5eaa47314bf351315eabf74e498af241e1eb2d273ca17fb13ebe5005f768e2
- SSDEEP
  
  6144:ewkhMv87Q9EFEc8FaSgbHtBxVRvYV7zL1uSb6VWi8FBo95qIGK3q0FhZyFPp4jWL:UPil6vRvYlzL1uSz/W5Gd
Score

8^/10

discovery
- Drops file in Drivers directory
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2