73dc381e4d35dae87b6c1efcbe1996ecf9d19de5ab367b31d58867902c6e3f06 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

73dc381e4d35dae87b6c1efcbe1996ecf9d19de5ab367b31d58867902c6e3f06
Size

78KB
Sample

221201-2t1p5ahh74
MD5

bb8166191032d441337e863c563821ca
SHA1

3739ba8bf7df3fbb7f89bd992a3941adc7f46968
SHA256

73dc381e4d35dae87b6c1efcbe1996ecf9d19de5ab367b31d58867902c6e3f06
SHA512

56f58511791d7801ce30d168516f4047e6274c5a05e59415f92cf2c2e98fa09d05a58d50506c2067aabd740291b790ddfef16c9f86519988f2173348926ff339
SSDEEP

1536:Q12U1/N7XlazAaoleiWwxGuRK/si17FsO9kERwSGno:PU1/NzlPpBWG9o/AsReno

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  73dc381e4d35dae87b6c1efcbe1996ecf9d19de5ab367b31d58867902c6e3f06
- Size
  
  78KB
- MD5
  
  bb8166191032d441337e863c563821ca
- SHA1
  
  3739ba8bf7df3fbb7f89bd992a3941adc7f46968
- SHA256
  
  73dc381e4d35dae87b6c1efcbe1996ecf9d19de5ab367b31d58867902c6e3f06
- SHA512
  
  56f58511791d7801ce30d168516f4047e6274c5a05e59415f92cf2c2e98fa09d05a58d50506c2067aabd740291b790ddfef16c9f86519988f2173348926ff339
- SSDEEP
  
  1536:Q12U1/N7XlazAaoleiWwxGuRK/si17FsO9kERwSGno:PU1/NzlPpBWG9o/AsReno
Score

7^/10

persistence
- Deletes itself
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2