def2d4632dcb0598c3041ce9831015c2ec0c0fba345e1bde510d7b20f9ee83e0 | Triage

Sharing

General

Target

def2d4632dcb0598c3041ce9831015c2ec0c0fba345e1bde510d7b20f9ee83e0
Size

154KB
Sample

241119-wklxqaypgt
MD5

337220ea92a2fd41266f444125d91a3b
SHA1

01472c82ac7ce0de27c816533810def6632d6636
SHA256

def2d4632dcb0598c3041ce9831015c2ec0c0fba345e1bde510d7b20f9ee83e0
SHA512

57b8fd4a2bdefbfc5347abfbe9cfbb0a04847cceaa60ca3d3e2f912f437cd0546222602792ceba6c19b468679fc3793ffaedc18e0e9169e8f292987542f05eed
SSDEEP

3072:GYftffjmNjleQjpgqK0I4rV3Fxi9DiIeolE+:zVfjmNjnxVI4RVxieH+

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  def2d4632dcb0598c3041ce9831015c2ec0c0fba345e1bde510d7b20f9ee83e0
- Size
  
  154KB
- MD5
  
  337220ea92a2fd41266f444125d91a3b
- SHA1
  
  01472c82ac7ce0de27c816533810def6632d6636
- SHA256
  
  def2d4632dcb0598c3041ce9831015c2ec0c0fba345e1bde510d7b20f9ee83e0
- SHA512
  
  57b8fd4a2bdefbfc5347abfbe9cfbb0a04847cceaa60ca3d3e2f912f437cd0546222602792ceba6c19b468679fc3793ffaedc18e0e9169e8f292987542f05eed
- SSDEEP
  
  3072:GYftffjmNjleQjpgqK0I4rV3Fxi9DiIeolE+:zVfjmNjnxVI4RVxieH+
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2