322b98e17f283dc1b3fdd10fc4e195f9022567135b6b19d27df40a898cf3c500 | Triage

Sharing

General

Target

322b98e17f283dc1b3fdd10fc4e195f9022567135b6b19d27df40a898cf3c500
Size

3.3MB
Sample

230825-na4e1sch41
MD5

f0bcedf8ae12aa3081459c2cbf4e0b03
SHA1

162cdccfbff2125c068418e597f1b2c9c9fef823
SHA256

322b98e17f283dc1b3fdd10fc4e195f9022567135b6b19d27df40a898cf3c500
SHA512

6f829e3c943b1c4aaf933055197211c4da69fc60564666be697de164922646a4c7036aeb89ffe886c2fc022d37305e81137996b63b4d3a489d90439a428aee6e
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlUzVNAWTqfS4oZu7CsOdE:c+8X9G3vP3AMyRTqboZNM

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  322b98e17f283dc1b3fdd10fc4e195f9022567135b6b19d27df40a898cf3c500
- Size
  
  3.3MB
- MD5
  
  f0bcedf8ae12aa3081459c2cbf4e0b03
- SHA1
  
  162cdccfbff2125c068418e597f1b2c9c9fef823
- SHA256
  
  322b98e17f283dc1b3fdd10fc4e195f9022567135b6b19d27df40a898cf3c500
- SHA512
  
  6f829e3c943b1c4aaf933055197211c4da69fc60564666be697de164922646a4c7036aeb89ffe886c2fc022d37305e81137996b63b4d3a489d90439a428aee6e
- SSDEEP
  
  49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlUzVNAWTqfS4oZu7CsOdE:c+8X9G3vP3AMyRTqboZNM
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2