cdd4bf3abb32d624a2430fa443af7dcf8449e5ea14273458e969e5688d2b6595 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cdd4bf3abb32d624a2430fa443af7dcf8449e5ea14273458e969e5688d2b6595
Size

306KB
Sample

221205-f6nenseb71
MD5

4dc18f9bf990e4b3c12c260cd48cc586
SHA1

8c3475d643e2f455ebf0bd46df46248863bf6e30
SHA256

cdd4bf3abb32d624a2430fa443af7dcf8449e5ea14273458e969e5688d2b6595
SHA512

f85a10d2293eb771dba7303965f8fd402e963fe8c27b9f72ecf9be7fe067dca713183906d10191de412231ea127d441a7da51dc90bd85e64f93bf09489e9aa47
SSDEEP

6144:Old2eRCF01y4NL3yrR8EhLUl4thm5Fa8bUT2uT83cqKfjI/Yqg4Og:Ovm0E4NLiN/BNrd8gT2uTFZCYL45

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  cdd4bf3abb32d624a2430fa443af7dcf8449e5ea14273458e969e5688d2b6595
- Size
  
  306KB
- MD5
  
  4dc18f9bf990e4b3c12c260cd48cc586
- SHA1
  
  8c3475d643e2f455ebf0bd46df46248863bf6e30
- SHA256
  
  cdd4bf3abb32d624a2430fa443af7dcf8449e5ea14273458e969e5688d2b6595
- SHA512
  
  f85a10d2293eb771dba7303965f8fd402e963fe8c27b9f72ecf9be7fe067dca713183906d10191de412231ea127d441a7da51dc90bd85e64f93bf09489e9aa47
- SSDEEP
  
  6144:Old2eRCF01y4NL3yrR8EhLUl4thm5Fa8bUT2uT83cqKfjI/Yqg4Og:Ovm0E4NLiN/BNrd8gT2uTFZCYL45
Score

8^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2