f5c70da7c2523edb7a85d9b784d2b057600f65adc6a38a2e0575c9044cea77d4 | Triage

Sharing

General

Target

f5c70da7c2523edb7a85d9b784d2b057600f65adc6a38a2e0575c9044cea77d4
Size

642KB
Sample

221030-bgskwaeee4
MD5

a302c7c4cd869764a7fa8fe4cff03650
SHA1

ef7f367e93e08c127db366a347670a01f0a9d926
SHA256

f5c70da7c2523edb7a85d9b784d2b057600f65adc6a38a2e0575c9044cea77d4
SHA512

9f5283eb3b285f7ffb670b85cb62a8a1328757ec74f0c9bd6a67503fd4be548a1157f4dc9a5d5c974b1460f61fcc4a9fc2c636c817fb37c359d1141905ac8be1
SSDEEP

12288:ufPi1dJU0L/vI9mOxPEUKRknYYJ2tHhyXxAeUgrSACI7XHgZQKhJgeCmAQL:ufPi1dJU43I98U7nYYJ2tHhADSANLHgd

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  f5c70da7c2523edb7a85d9b784d2b057600f65adc6a38a2e0575c9044cea77d4
- Size
  
  642KB
- MD5
  
  a302c7c4cd869764a7fa8fe4cff03650
- SHA1
  
  ef7f367e93e08c127db366a347670a01f0a9d926
- SHA256
  
  f5c70da7c2523edb7a85d9b784d2b057600f65adc6a38a2e0575c9044cea77d4
- SHA512
  
  9f5283eb3b285f7ffb670b85cb62a8a1328757ec74f0c9bd6a67503fd4be548a1157f4dc9a5d5c974b1460f61fcc4a9fc2c636c817fb37c359d1141905ac8be1
- SSDEEP
  
  12288:ufPi1dJU0L/vI9mOxPEUKRknYYJ2tHhyXxAeUgrSACI7XHgZQKhJgeCmAQL:ufPi1dJU43I98U7nYYJ2tHhADSANLHgd
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2