Overview

overview

8

Static

static

1

naw.txt

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    naw.txt

  • Size

    24B

  • Sample

    230303-wdnsqsac2v

  • MD5

    6ad7af6fdef3d586ce1fe757ec86ee01

  • SHA1

    75aed56e2a21a78470466a28d879df284473d2c1

  • SHA256

    7d121df863d54773682b2d0536d1773e567d8359dcf652e2a377138267698ef9

  • SHA512

    5ab36c1b3010f387efb4688bd1a7c397af3eedb93baca968df2ae2b6c90ac13aa0a026cd55ce80108bf785bf1a309c9fb3a4a53c97b3aa565770c48511545167

Score
8/10
persistence

Malware Config

Targets

    • Target

      naw.txt

    • Size

      24B

    • MD5

      6ad7af6fdef3d586ce1fe757ec86ee01

    • SHA1

      75aed56e2a21a78470466a28d879df284473d2c1

    • SHA256

      7d121df863d54773682b2d0536d1773e567d8359dcf652e2a377138267698ef9

    • SHA512

      5ab36c1b3010f387efb4688bd1a7c397af3eedb93baca968df2ae2b6c90ac13aa0a026cd55ce80108bf785bf1a309c9fb3a4a53c97b3aa565770c48511545167

    Score
    8/10
    persistence

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks