2e344b4d1a3027208b184ea08b2cda0292c466dae194574d6d55de5b3a5ee96a | Triage

Submit
Reports

Overview

overview

Static

static

3

2e344b4d1a...6a.exe

windows7-x64

7

2e344b4d1a...6a.exe

windows10-2004-x64

Sharing

General

Target

2e344b4d1a3027208b184ea08b2cda0292c466dae194574d6d55de5b3a5ee96a.exe
Size

31.3MB
Sample

241121-ycaktsvrev
MD5

c7d41ab0010d16a148b032181ec6647d
SHA1

1caa54814b72de04291ac5b90e22295c1b24db4d
SHA256

2e344b4d1a3027208b184ea08b2cda0292c466dae194574d6d55de5b3a5ee96a
SHA512

129445debf1b1bf3972df64faca2f52b214cc3f1834b2db96c9cce62cf3ec9bf648c06aedc99d025fecbfe36cedb3637cab544c4267553063b1de2987f3e18dc
SSDEEP

786432:zO2PsT1ywB80O57/Y8sqa7FV1xX6Oq6UXirV9Md8Ww:zO2PsRywB8j5sAapvxXTamCtw

Score

10^/10

discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2e344b4d1a3027208b184ea08b2cda0292c466dae194574d6d55de5b3a5ee96a.exe

Resource

win7-20240708-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

2e344b4d1a3027208b184ea08b2cda0292c466dae194574d6d55de5b3a5ee96a.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  2e344b4d1a3027208b184ea08b2cda0292c466dae194574d6d55de5b3a5ee96a.exe
- Size
  
  31.3MB
- MD5
  
  c7d41ab0010d16a148b032181ec6647d
- SHA1
  
  1caa54814b72de04291ac5b90e22295c1b24db4d
- SHA256
  
  2e344b4d1a3027208b184ea08b2cda0292c466dae194574d6d55de5b3a5ee96a
- SHA512
  
  129445debf1b1bf3972df64faca2f52b214cc3f1834b2db96c9cce62cf3ec9bf648c06aedc99d025fecbfe36cedb3637cab544c4267553063b1de2987f3e18dc
- SSDEEP
  
  786432:zO2PsT1ywB80O57/Y8sqa7FV1xX6Oq6UXirV9Md8Ww:zO2PsRywB8j5sAapvxXTamCtw
Score

10^/10

discovery
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy