7fbccb87c4b6db97de5bb52f19d476a920c4c7409248b21985aa36793c6b6bbe | Triage

Sharing

General

Target

7fbccb87c4b6db97de5bb52f19d476a920c4c7409248b21985aa36793c6b6bbe
Size

27KB
Sample

221201-c7ktdsbg6v
MD5

3174be890162932e8b81e26d45870929
SHA1

43f104c37daf5d2654d656e73910e8a58b4d99a3
SHA256

7fbccb87c4b6db97de5bb52f19d476a920c4c7409248b21985aa36793c6b6bbe
SHA512

7be21d7f60ee4e758cb9a411332f19d8d071387446b1e83030486cc8138c70f3218a66a37e08ea435a6ebcf11f12c7de286ea9b77111e61489f28cdf999695ca
SSDEEP

768:8UaS3WeUNZ45zF6Mxchrde5Jg7jycacVUc:W2WeAsQMxIrOJWjecVU

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  7fbccb87c4b6db97de5bb52f19d476a920c4c7409248b21985aa36793c6b6bbe
- Size
  
  27KB
- MD5
  
  3174be890162932e8b81e26d45870929
- SHA1
  
  43f104c37daf5d2654d656e73910e8a58b4d99a3
- SHA256
  
  7fbccb87c4b6db97de5bb52f19d476a920c4c7409248b21985aa36793c6b6bbe
- SHA512
  
  7be21d7f60ee4e758cb9a411332f19d8d071387446b1e83030486cc8138c70f3218a66a37e08ea435a6ebcf11f12c7de286ea9b77111e61489f28cdf999695ca
- SSDEEP
  
  768:8UaS3WeUNZ45zF6Mxchrde5Jg7jycacVUc:W2WeAsQMxIrOJWjecVU
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2