0ad92a5cd8e16767d736e0d8f62b15ae227cab8f05fa4a83ad9b7eaaa0f911c3 | Triage

Sharing

General

Target

0ad92a5cd8e16767d736e0d8f62b15ae227cab8f05fa4a83ad9b7eaaa0f911c3
Size

2.7MB
Sample

230823-a2cvgsab41
MD5

804df64dffd48404e01e235a3daa9ac8
SHA1

ea85060eb1a5c5ca8578be182f9eb5ab2f80fab3
SHA256

0ad92a5cd8e16767d736e0d8f62b15ae227cab8f05fa4a83ad9b7eaaa0f911c3
SHA512

ff02c03987e9488b89836edff46027aa6cddda1bcb3e34470caa491cc2cf7de08a2424eb41e36f66cbd0021cc4df8d0be2923c203823b49fcfd67e82b58c724c
SSDEEP

24576:3O4ogbDInWANHLDebHGF2LpHZUJWMCYjWZ2RFx7Jq+Aw6zTDOx293i79KNwtpTaJ:e4I1vebH6hSIF5mxG9KNwBQR

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  0ad92a5cd8e16767d736e0d8f62b15ae227cab8f05fa4a83ad9b7eaaa0f911c3
- Size
  
  2.7MB
- MD5
  
  804df64dffd48404e01e235a3daa9ac8
- SHA1
  
  ea85060eb1a5c5ca8578be182f9eb5ab2f80fab3
- SHA256
  
  0ad92a5cd8e16767d736e0d8f62b15ae227cab8f05fa4a83ad9b7eaaa0f911c3
- SHA512
  
  ff02c03987e9488b89836edff46027aa6cddda1bcb3e34470caa491cc2cf7de08a2424eb41e36f66cbd0021cc4df8d0be2923c203823b49fcfd67e82b58c724c
- SSDEEP
  
  24576:3O4ogbDInWANHLDebHGF2LpHZUJWMCYjWZ2RFx7Jq+Aw6zTDOx293i79KNwtpTaJ:e4I1vebH6hSIF5mxG9KNwBQR
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2