General

  • Target

    3acbcd385dcca5bef66a011ca1dc65f7945967fb244d7cb12f2ec363a48144b5

  • Size

    2.8MB

  • Sample

    220703-xfrsvaeff5

  • MD5

    7c510d74eca6e39aef20590eccf15ece

  • SHA1

    7ab2c3d79ba22a1daab82033cb3f082fb5f7e135

  • SHA256

    3acbcd385dcca5bef66a011ca1dc65f7945967fb244d7cb12f2ec363a48144b5

  • SHA512

    ade5ac974f94d910e05525f41d0d905c31f79ff299d8effc1efbf12d148ce1f50c0582f7207c0b56259be045de0050a051ff76ab21b792fcd15eb05912bc12b2

Score
8/10

Malware Config

Targets

    • Target

      3acbcd385dcca5bef66a011ca1dc65f7945967fb244d7cb12f2ec363a48144b5

    • Size

      2.8MB

    • MD5

      7c510d74eca6e39aef20590eccf15ece

    • SHA1

      7ab2c3d79ba22a1daab82033cb3f082fb5f7e135

    • SHA256

      3acbcd385dcca5bef66a011ca1dc65f7945967fb244d7cb12f2ec363a48144b5

    • SHA512

      ade5ac974f94d910e05525f41d0d905c31f79ff299d8effc1efbf12d148ce1f50c0582f7207c0b56259be045de0050a051ff76ab21b792fcd15eb05912bc12b2

    Score
    6/10
    • Adds Run key to start application

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Replication Through Removable Media

1
T1091

Persistence

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

Modify Registry

1
T1112

Lateral Movement

Replication Through Removable Media

1
T1091

Tasks