bf91d4e9c63aec0b8dbab17b6e13187fd910428ec883b4a080054b03f4584cc7 | Triage

Sharing

General

Target

Snook13s.exe
Size

1.3MB
Sample

241119-sxesdsxmfs
MD5

fcefd307d52481eb67325b3fc295980a
SHA1

70ff818096785a113d0ca2c12019d14bc80fa390
SHA256

bf91d4e9c63aec0b8dbab17b6e13187fd910428ec883b4a080054b03f4584cc7
SHA512

3440dc3b5133d27a7e6ec232861ae69b44d52d4108fd268b280d37c162fb4c5e4f08e7221a58ebde06c6d36088841a6b908ab9a73eb1e911c26a55ca16ce981f
SSDEEP

24576:NMcUX4eLAzYQswBIA4w1dvchvRcjWLyA8pIG6+9zcpKSj2erDnB4TdIw+FwqgW1:NMd4eLAzYdX6dvooW84pPj2KDnaxEj1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  Snook13s.exe
- Size
  
  1.3MB
- MD5
  
  fcefd307d52481eb67325b3fc295980a
- SHA1
  
  70ff818096785a113d0ca2c12019d14bc80fa390
- SHA256
  
  bf91d4e9c63aec0b8dbab17b6e13187fd910428ec883b4a080054b03f4584cc7
- SHA512
  
  3440dc3b5133d27a7e6ec232861ae69b44d52d4108fd268b280d37c162fb4c5e4f08e7221a58ebde06c6d36088841a6b908ab9a73eb1e911c26a55ca16ce981f
- SSDEEP
  
  24576:NMcUX4eLAzYQswBIA4w1dvchvRcjWLyA8pIG6+9zcpKSj2erDnB4TdIw+FwqgW1:NMd4eLAzYdX6dvooW84pPj2KDnaxEj1
Score

7^/10

discovery
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2