e13cc3478f05a39c7b377e7d9c0077d0a2ab0ff2a25422bc84409a2148ffde2f | Triage

Sharing

General

Target

e13cc3478f05a39c7b377e7d9c0077d0a2ab0ff2a25422bc84409a2148ffde2f
Size

708KB
Sample

221030-njtl6sghc4
MD5

a32a8bcb8b0899cc2f36e8a989f20fc0
SHA1

8dac66e043ccc26e2042f33d322a7cdd772b0df2
SHA256

e13cc3478f05a39c7b377e7d9c0077d0a2ab0ff2a25422bc84409a2148ffde2f
SHA512

b514a5ae2666f2707817b8e1adb69efa957ea6ff3d1edd629c67bb228cf71dbd5b8dc2f4706bab27dfa382b7ff07616fb73dbf39c4fce032ff5d62a5425b66c2
SSDEEP

6144:cl1LYIDmLr0inpCCO5FwRN/92gQqDBXKvkC3qT1NbG4yvS:+YIDmLr0i8DMGgQMW6hl

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  e13cc3478f05a39c7b377e7d9c0077d0a2ab0ff2a25422bc84409a2148ffde2f
- Size
  
  708KB
- MD5
  
  a32a8bcb8b0899cc2f36e8a989f20fc0
- SHA1
  
  8dac66e043ccc26e2042f33d322a7cdd772b0df2
- SHA256
  
  e13cc3478f05a39c7b377e7d9c0077d0a2ab0ff2a25422bc84409a2148ffde2f
- SHA512
  
  b514a5ae2666f2707817b8e1adb69efa957ea6ff3d1edd629c67bb228cf71dbd5b8dc2f4706bab27dfa382b7ff07616fb73dbf39c4fce032ff5d62a5425b66c2
- SSDEEP
  
  6144:cl1LYIDmLr0inpCCO5FwRN/92gQqDBXKvkC3qT1NbG4yvS:+YIDmLr0i8DMGgQMW6hl
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2