867eca0d1ff523c7d36fa97d621d1145fabc645e8b637358433837d843ed0e66 | Triage

Sharing

General

Target

867eca0d1ff523c7d36fa97d621d1145fabc645e8b637358433837d843ed0e66
Size

1.1MB
Sample

221106-sz5ftsbfal
MD5

0e7fa8958e4cbc34ae16abb8ee577f7f
SHA1

55af5809411720690174be6d564d2076ddb00d5e
SHA256

867eca0d1ff523c7d36fa97d621d1145fabc645e8b637358433837d843ed0e66
SHA512

df0378ed98e88be1970eb6d1645c91d51b3a46b79a6b69874e818c41760257ef7d54a6414b00aec942528fd5fbf4c5e48cae97ceb3424d0c5471037404b71794
SSDEEP

24576:VTGpL/8D9Pzf/j3qNL8nUepusudB+KJIqxHLZ:QpL/8D9rDaNL8nUepuB+OIWZ

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  867eca0d1ff523c7d36fa97d621d1145fabc645e8b637358433837d843ed0e66
- Size
  
  1.1MB
- MD5
  
  0e7fa8958e4cbc34ae16abb8ee577f7f
- SHA1
  
  55af5809411720690174be6d564d2076ddb00d5e
- SHA256
  
  867eca0d1ff523c7d36fa97d621d1145fabc645e8b637358433837d843ed0e66
- SHA512
  
  df0378ed98e88be1970eb6d1645c91d51b3a46b79a6b69874e818c41760257ef7d54a6414b00aec942528fd5fbf4c5e48cae97ceb3424d0c5471037404b71794
- SSDEEP
  
  24576:VTGpL/8D9Pzf/j3qNL8nUepusudB+KJIqxHLZ:QpL/8D9rDaNL8nUepuB+OIWZ
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2