836c224d6b720e175554029d5465b13d207904b71974f9dcdfbe69f2e2de914e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

836c224d6b720e175554029d5465b13d207904b71974f9dcdfbe69f2e2de914e
Size

64KB
Sample

221029-x2z2cacchl
MD5

83e81ad36d22123133e5dbe8654c1cd9
SHA1

207508a48bf0e18311a798ba106574282c9eaa39
SHA256

836c224d6b720e175554029d5465b13d207904b71974f9dcdfbe69f2e2de914e
SHA512

1ad0bb40c0b90796a99aa22333207038ce91b45d2fbd200a2c73091864c3c7f20db4252342477acf96ef05220c362e385c27b7657aa43cb482b713c175d10b65
SSDEEP

1536:w4xDXwnrh23xVpS04Ti7qXE3dHi7YVwbC:w6Lwrh23Dpt93dHiEVwO

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  836c224d6b720e175554029d5465b13d207904b71974f9dcdfbe69f2e2de914e
- Size
  
  64KB
- MD5
  
  83e81ad36d22123133e5dbe8654c1cd9
- SHA1
  
  207508a48bf0e18311a798ba106574282c9eaa39
- SHA256
  
  836c224d6b720e175554029d5465b13d207904b71974f9dcdfbe69f2e2de914e
- SHA512
  
  1ad0bb40c0b90796a99aa22333207038ce91b45d2fbd200a2c73091864c3c7f20db4252342477acf96ef05220c362e385c27b7657aa43cb482b713c175d10b65
- SSDEEP
  
  1536:w4xDXwnrh23xVpS04Ti7qXE3dHi7YVwbC:w6Lwrh23Dpt93dHiEVwO
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Replication Through Removable Media

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2