d2f94299a4ad525d1cc86a89e4a5bc4eca26d812009a3ae9eb63faaedf1d443e | Triage

Sharing

General

Target

d2f94299a4ad525d1cc86a89e4a5bc4eca26d812009a3ae9eb63faaedf1d443e
Size

802KB
Sample

240919-cqqy3swcjj
MD5

e58c6da760a584e6ae719b048c74f2b2
SHA1

b2371289f2c2e79308eca8ac515a2830c74e8e3c
SHA256

d2f94299a4ad525d1cc86a89e4a5bc4eca26d812009a3ae9eb63faaedf1d443e
SHA512

241161ba61bebe8120031ce60ffe3c0003b1b6f7299d72236e786bd025be403f3c1e9cd66fe815768d96e636e67b04e78e59e6038a19629945bb107ada2c8d36
SSDEEP

12288:ZJSipJ8uhi6UsqHnpQnJxZHDZ2OSSWxxLuFs/unEIZUlxOnY7a+w:p/S6UsqHn2LjZ2OgLjdIKxQXj

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  d2f94299a4ad525d1cc86a89e4a5bc4eca26d812009a3ae9eb63faaedf1d443e
- Size
  
  802KB
- MD5
  
  e58c6da760a584e6ae719b048c74f2b2
- SHA1
  
  b2371289f2c2e79308eca8ac515a2830c74e8e3c
- SHA256
  
  d2f94299a4ad525d1cc86a89e4a5bc4eca26d812009a3ae9eb63faaedf1d443e
- SHA512
  
  241161ba61bebe8120031ce60ffe3c0003b1b6f7299d72236e786bd025be403f3c1e9cd66fe815768d96e636e67b04e78e59e6038a19629945bb107ada2c8d36
- SSDEEP
  
  12288:ZJSipJ8uhi6UsqHnpQnJxZHDZ2OSSWxxLuFs/unEIZUlxOnY7a+w:p/S6UsqHn2LjZ2OgLjdIKxQXj
Score

10^/10

discovery evasion
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Drops file in Drivers directory
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion