f01c40059ca6f555a22b105a881797b9dad1c8b748721b231e0354e7a4940894 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f01c40059ca6f555a22b105a881797b9dad1c8b748721b231e0354e7a4940894
Size

285KB
Sample

221203-dhpxgshe49
MD5

cbc709be817d9d090ca2490aad1f5e22
SHA1

e375484efb972dd801dbf48e82f49ea0deafea8d
SHA256

f01c40059ca6f555a22b105a881797b9dad1c8b748721b231e0354e7a4940894
SHA512

0ad197b61eba3c49c0f3efbb04bbf0a8f2cb2080f5ec14477f12f5e1ef1dd7a3d27ce655f49ed5daa793879835a08834d1a6111e2e4f9b4aabc769677d860af4
SSDEEP

6144:K1tC/lxQEMOG/OIgcwKQgno63E2fMXh9x0C8jpUGKq:K6xwOGdwKJoOIhr89UGKq

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  f01c40059ca6f555a22b105a881797b9dad1c8b748721b231e0354e7a4940894
- Size
  
  285KB
- MD5
  
  cbc709be817d9d090ca2490aad1f5e22
- SHA1
  
  e375484efb972dd801dbf48e82f49ea0deafea8d
- SHA256
  
  f01c40059ca6f555a22b105a881797b9dad1c8b748721b231e0354e7a4940894
- SHA512
  
  0ad197b61eba3c49c0f3efbb04bbf0a8f2cb2080f5ec14477f12f5e1ef1dd7a3d27ce655f49ed5daa793879835a08834d1a6111e2e4f9b4aabc769677d860af4
- SSDEEP
  
  6144:K1tC/lxQEMOG/OIgcwKQgno63E2fMXh9x0C8jpUGKq:K6xwOGdwKJoOIhr89UGKq
Score

8^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2