c05e78d737a715c0b064ab28e55cdad786fe34e8d11adfbee5f530f62b655b3d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c05e78d737a715c0b064ab28e55cdad786fe34e8d11adfbee5f530f62b655b3d
Size

69KB
Sample

221203-gmcdqsdg9w
MD5

e5796390f83174a0196eb590c445bb73
SHA1

2a026983b99303b8cc0666dfb9063f2e2df2247b
SHA256

c05e78d737a715c0b064ab28e55cdad786fe34e8d11adfbee5f530f62b655b3d
SHA512

203c9abafe51e3986b9a56314aaa811325303b4422374b65edb6289e2617b32ac77c47b5c92f4d141cdd79a7b425d5c6d93f590f9d7369ea8cbc0e4de3f8f235
SSDEEP

1536:kR9m8BcQgrj9gUZSTftV161vFkckH7honAXOrJtu:o9m8BctpnZSpKtkckbhonAXOXu

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  c05e78d737a715c0b064ab28e55cdad786fe34e8d11adfbee5f530f62b655b3d
- Size
  
  69KB
- MD5
  
  e5796390f83174a0196eb590c445bb73
- SHA1
  
  2a026983b99303b8cc0666dfb9063f2e2df2247b
- SHA256
  
  c05e78d737a715c0b064ab28e55cdad786fe34e8d11adfbee5f530f62b655b3d
- SHA512
  
  203c9abafe51e3986b9a56314aaa811325303b4422374b65edb6289e2617b32ac77c47b5c92f4d141cdd79a7b425d5c6d93f590f9d7369ea8cbc0e4de3f8f235
- SSDEEP
  
  1536:kR9m8BcQgrj9gUZSTftV161vFkckH7honAXOrJtu:o9m8BctpnZSpKtkckbhonAXOXu
Score

8^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2