afc0c36d91cd2f01fcb6782a8e9eb29689bbc9538dac9343a8ff5135b17adbc7 | Triage

Sharing

General

Target

afc0c36d91cd2f01fcb6782a8e9eb29689bbc9538dac9343a8ff5135b17adbc7
Size

980KB
Sample

221203-c888dagg22
MD5

b9caf68a76a93c48b7f4f1163de85546
SHA1

cf233f398452f12bdfe51e2c6483f7f2a25e55bf
SHA256

afc0c36d91cd2f01fcb6782a8e9eb29689bbc9538dac9343a8ff5135b17adbc7
SHA512

ab9906f96780e35e53e811085b6b145fcad439e6e0730d88d296649d44e9273773166011fc3665332851243c4b97725ec7b78de6da7ae73585b5a1ba28652b45
SSDEEP

24576:lQ8qK0qjIGAvsK0qjIGAYwP+Wt4hOWRzxDw4Y9e3+7KHVXX:l3X0qkZ0q9wPt4hOWRzxzYjeVXX

Score

10^/10

persistence upx

Malware Config

Targets

- Target
  
  afc0c36d91cd2f01fcb6782a8e9eb29689bbc9538dac9343a8ff5135b17adbc7
- Size
  
  980KB
- MD5
  
  b9caf68a76a93c48b7f4f1163de85546
- SHA1
  
  cf233f398452f12bdfe51e2c6483f7f2a25e55bf
- SHA256
  
  afc0c36d91cd2f01fcb6782a8e9eb29689bbc9538dac9343a8ff5135b17adbc7
- SHA512
  
  ab9906f96780e35e53e811085b6b145fcad439e6e0730d88d296649d44e9273773166011fc3665332851243c4b97725ec7b78de6da7ae73585b5a1ba28652b45
- SSDEEP
  
  24576:lQ8qK0qjIGAvsK0qjIGAYwP+Wt4hOWRzxDw4Y9e3+7KHVXX:l3X0qkZ0q9wPt4hOWRzxzYjeVXX
Score

10^/10

persistence upx
- Modifies system executable filetype association
  persistence
- Drops file in Drivers directory
- Sets service image path in registry
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2