1cebb1153264ff7d706895a8a17411f4f037ee4854756ce90ee0506af73d5fe7 | Triage

Sharing

General

Target

中国女拽着小树林就地强奸视频曝光.bat
Size

408KB
Sample

210620-a6r2byn1y6
MD5

3efdbddd282598591e6096caae8e10d2
SHA1

a9c8f7ed926c13f14ca55331674639d89e198dd1
SHA256

1cebb1153264ff7d706895a8a17411f4f037ee4854756ce90ee0506af73d5fe7
SHA512

ef3ff8f9c1654821143c753ccbe1a0a82dbe33a8a390bd559353baad642d5e45e6e4d2a566f726147e431a09e7b2538bbdc53221d68567aaf9a6823e981f7554

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  中国女拽着小树林就地强奸视频曝光.bat
- Size
  
  408KB
- MD5
  
  3efdbddd282598591e6096caae8e10d2
- SHA1
  
  a9c8f7ed926c13f14ca55331674639d89e198dd1
- SHA256
  
  1cebb1153264ff7d706895a8a17411f4f037ee4854756ce90ee0506af73d5fe7
- SHA512
  
  ef3ff8f9c1654821143c753ccbe1a0a82dbe33a8a390bd559353baad642d5e45e6e4d2a566f726147e431a09e7b2538bbdc53221d68567aaf9a6823e981f7554
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2