355ca834be29c148d27f973299fac1c434bcec5b7b319a47c7d98eb1c96da1eb | Triage

Sharing

General

Target

mstsc.exe
Size

1.5MB
Sample

221124-f8a75afa31
MD5

7ffae462b1c5a51c720d428237febd97
SHA1

bc0ac58f858cfd14f2db0a3c4a44da4ea9ad21d7
SHA256

355ca834be29c148d27f973299fac1c434bcec5b7b319a47c7d98eb1c96da1eb
SHA512

7cd6c6f9357b0c1c0abd3ef046ad7ed48d627071a99603f9ffe5f68894afbebca46bb634f0f75a665c171fcefc984b5232300399a8f1637ff55bdc113e8961e2
SSDEEP

24576:kqw21bi8YMMjO9SA2yNA5OfBD3TUTsukzwY89mZACErai2/FE/DgzbfFK8WZRw+i:9bi8pMjO9SA2yNA58BD3TrukzwY89mZv

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  mstsc.exe
- Size
  
  1.5MB
- MD5
  
  7ffae462b1c5a51c720d428237febd97
- SHA1
  
  bc0ac58f858cfd14f2db0a3c4a44da4ea9ad21d7
- SHA256
  
  355ca834be29c148d27f973299fac1c434bcec5b7b319a47c7d98eb1c96da1eb
- SHA512
  
  7cd6c6f9357b0c1c0abd3ef046ad7ed48d627071a99603f9ffe5f68894afbebca46bb634f0f75a665c171fcefc984b5232300399a8f1637ff55bdc113e8961e2
- SSDEEP
  
  24576:kqw21bi8YMMjO9SA2yNA5OfBD3TUTsukzwY89mZACErai2/FE/DgzbfFK8WZRw+i:9bi8pMjO9SA2yNA58BD3TrukzwY89mZv
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2