7a966aec2f208fd9da7b3182c974f0734e9862d9df173383ac55bf0e83d672e8 | Triage

Sharing

General

Target

7a966aec2f208fd9da7b3182c974f0734e9862d9df173383ac55bf0e83d672e8
Size

410KB
Sample

221129-svf8faca33
MD5

7a7480af8a1ccbed68379b892fa3b98f
SHA1

44d1359ee883d40c98e25eadea0b7e1dd8a530b3
SHA256

7a966aec2f208fd9da7b3182c974f0734e9862d9df173383ac55bf0e83d672e8
SHA512

6240595577c2b1b2f9d278ff482560b90468347aa1c1179ddff3121d143db8988b50e8a36eadfeda8ea71df8219460798941d2812822664e773dfcdc4b7be09c
SSDEEP

6144:WdspDeDrxkg/vrMuJIgwhEFHyOrJcX/Pgqwzm5IzkWjS4e4azExBKO1t4Kb70NqY:s8kxNhOZElO5kkWjhD4A45lGU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  7a966aec2f208fd9da7b3182c974f0734e9862d9df173383ac55bf0e83d672e8
- Size
  
  410KB
- MD5
  
  7a7480af8a1ccbed68379b892fa3b98f
- SHA1
  
  44d1359ee883d40c98e25eadea0b7e1dd8a530b3
- SHA256
  
  7a966aec2f208fd9da7b3182c974f0734e9862d9df173383ac55bf0e83d672e8
- SHA512
  
  6240595577c2b1b2f9d278ff482560b90468347aa1c1179ddff3121d143db8988b50e8a36eadfeda8ea71df8219460798941d2812822664e773dfcdc4b7be09c
- SSDEEP
  
  6144:WdspDeDrxkg/vrMuJIgwhEFHyOrJcX/Pgqwzm5IzkWjS4e4azExBKO1t4Kb70NqY:s8kxNhOZElO5kkWjhD4A45lGU
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2