5d1b4589c765a0f69e9fa4d1713c1f9271c7339163aa5a491da17b84d59e6638 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d1b4589c765a0f69e9fa4d1713c1f9271c7339163aa5a491da17b84d59e6638N
Size

2.7MB
Sample

240919-a3ltsa1hre
MD5

a7f4c4927a1dd61140640b3562a00080
SHA1

b6aaa42fe61c5cb6adbd4035292a99105682552c
SHA256

5d1b4589c765a0f69e9fa4d1713c1f9271c7339163aa5a491da17b84d59e6638
SHA512

29421f892377dc8351cad7abba0932c9ab791a3dad75600a6e3521f34e2138d7d51d22a01aebec23b575697f93ba9b0b90a846b230ff96f59037d52c1123ffe5
SSDEEP

49152:rHoV8oxKIsfIER6l7SJ7kk+K7yBINz+XTwBOGZ5klM5Xf/+T5jLs:rHoV8T64JyBINz6TG5Xe

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  5d1b4589c765a0f69e9fa4d1713c1f9271c7339163aa5a491da17b84d59e6638N
- Size
  
  2.7MB
- MD5
  
  a7f4c4927a1dd61140640b3562a00080
- SHA1
  
  b6aaa42fe61c5cb6adbd4035292a99105682552c
- SHA256
  
  5d1b4589c765a0f69e9fa4d1713c1f9271c7339163aa5a491da17b84d59e6638
- SHA512
  
  29421f892377dc8351cad7abba0932c9ab791a3dad75600a6e3521f34e2138d7d51d22a01aebec23b575697f93ba9b0b90a846b230ff96f59037d52c1123ffe5
- SSDEEP
  
  49152:rHoV8oxKIsfIER6l7SJ7kk+K7yBINz+XTwBOGZ5klM5Xf/+T5jLs:rHoV8T64JyBINz6TG5Xe
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2