22f83229ea6dbe8f8e831939dfd7831a7817ac967ccb87afda077d1d47cea4e2 | Triage

Resubmissions

12/10/2024, 08:42

241012-kl3fbascqa 6

12/10/2024, 08:41

241012-klghvascne 6

Sharing

General

Target

driverless-disk.bat
Size

13KB
Sample

241012-kl3fbascqa
MD5

49a5f55868a783b754fead973013bbee
SHA1

298c7ecf80b26bd204b709f1a13c6dc0d7747a91
SHA256

22f83229ea6dbe8f8e831939dfd7831a7817ac967ccb87afda077d1d47cea4e2
SHA512

8f7e27e3232137c3622e156595618e8ae19ae29fc9ee75be51ee715b821d3a0320956e84a34502020d88a3ef5b6c45405afb7012fbf96288c2aa4c305236f1d1
SSDEEP

192:dIc4yR9Y9A/r1/kMUnNLyCYSvGOqHQ28lh9YDpqWkSyt1ninmdKgZ:bxR9hjF/UnECROBClh9YDpDkSy3inlo

Score

6^/10

Malware Config

Targets

- Target
  
  driverless-disk.bat
- Size
  
  13KB
- MD5
  
  49a5f55868a783b754fead973013bbee
- SHA1
  
  298c7ecf80b26bd204b709f1a13c6dc0d7747a91
- SHA256
  
  22f83229ea6dbe8f8e831939dfd7831a7817ac967ccb87afda077d1d47cea4e2
- SHA512
  
  8f7e27e3232137c3622e156595618e8ae19ae29fc9ee75be51ee715b821d3a0320956e84a34502020d88a3ef5b6c45405afb7012fbf96288c2aa4c305236f1d1
- SSDEEP
  
  192:dIc4yR9Y9A/r1/kMUnNLyCYSvGOqHQ28lh9YDpqWkSyt1ninmdKgZ:bxR9hjF/UnECROBClh9YDpDkSy3inlo
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2