a5ddf7a92004bcb2ff96469438fd490d3f908d49e594f9e2f45631fcd17589a7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a5ddf7a92004bcb2ff96469438fd490d3f908d49e594f9e2f45631fcd17589a7
Size

70KB
Sample

241031-kec7vavfmj
MD5

811f8b56a7227b1cbe378d5680f1ab2b
SHA1

6d938d308f018a9b1e3385b935b4ca45e85d8f9a
SHA256

a5ddf7a92004bcb2ff96469438fd490d3f908d49e594f9e2f45631fcd17589a7
SHA512

dc8c1aa5d6805748190cbbc9597df78405d298f15ab5da1ad24da95b4d0a4afda1013e3a393bd16944a04f2cdccd338083658227164837700f940e48125aaf9a
SSDEEP

1536:pwr3SHuJV9NdEToa9D4ZQKbgZi1dst7x9PxQ:pwrkuJVLtlZQKbgZi1St7xQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a5ddf7a92004bcb2ff96469438fd490d3f908d49e594f9e2f45631fcd17589a7
- Size
  
  70KB
- MD5
  
  811f8b56a7227b1cbe378d5680f1ab2b
- SHA1
  
  6d938d308f018a9b1e3385b935b4ca45e85d8f9a
- SHA256
  
  a5ddf7a92004bcb2ff96469438fd490d3f908d49e594f9e2f45631fcd17589a7
- SHA512
  
  dc8c1aa5d6805748190cbbc9597df78405d298f15ab5da1ad24da95b4d0a4afda1013e3a393bd16944a04f2cdccd338083658227164837700f940e48125aaf9a
- SSDEEP
  
  1536:pwr3SHuJV9NdEToa9D4ZQKbgZi1dst7x9PxQ:pwrkuJVLtlZQKbgZi1St7xQ
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2