f3b0fb53430d8179d3cbf3e327b0a327eb9aa036852ba00a71c975480435886c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f3b0fb53430d8179d3cbf3e327b0a327eb9aa036852ba00a71c975480435886c
Size

62KB
Sample

221203-db7tqaha38
MD5

2c73bb6517974ad7206c6499553e18e0
SHA1

38006ecb04e6d4cbfe5c0306aa5df25fb6df1784
SHA256

f3b0fb53430d8179d3cbf3e327b0a327eb9aa036852ba00a71c975480435886c
SHA512

6b4e39e4b6c56fb33d126cdf40f03fb4a8bf025f8731e38c2d232bcb2de4d154019b0d49105ad8b73824054c764f1416f56a1451464e4676ef53660a61c68915
SSDEEP

768:tImlmJpTLuIWJBrg6PhH7Od9l96RGGj/9Dhfaj6eCXLdQn4nUfDi9duXFXct:tsJpT6+27OLL6Bj/xhC+jXqn1uvuXFst

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  f3b0fb53430d8179d3cbf3e327b0a327eb9aa036852ba00a71c975480435886c
- Size
  
  62KB
- MD5
  
  2c73bb6517974ad7206c6499553e18e0
- SHA1
  
  38006ecb04e6d4cbfe5c0306aa5df25fb6df1784
- SHA256
  
  f3b0fb53430d8179d3cbf3e327b0a327eb9aa036852ba00a71c975480435886c
- SHA512
  
  6b4e39e4b6c56fb33d126cdf40f03fb4a8bf025f8731e38c2d232bcb2de4d154019b0d49105ad8b73824054c764f1416f56a1451464e4676ef53660a61c68915
- SSDEEP
  
  768:tImlmJpTLuIWJBrg6PhH7Od9l96RGGj/9Dhfaj6eCXLdQn4nUfDi9duXFXct:tsJpT6+27OLL6Bj/xhC+jXqn1uvuXFst
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2