0ba0990a3523ed2d97a8c5d11eb35aaec0ed1213b9843c8f707a39aadf02f9dd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ba0990a3523ed2d97a8c5d11eb35aaec0ed1213b9843c8f707a39aadf02f9dd
Size

2.7MB
Sample

230826-n79cjaaa33
MD5

aee611e2e1b004f6722d8de5de70a088
SHA1

cc204f23f7bb614ee9d9ca2097e6ba97a83fae0a
SHA256

0ba0990a3523ed2d97a8c5d11eb35aaec0ed1213b9843c8f707a39aadf02f9dd
SHA512

ffc7152af82d24981f1f444f6d01d3b5ee660cff254d9f6d93068c0f5ff782ab573f8646e7d67d33350387233d3ae9469df9cf5e6a6b705dd379f20d0329f0ab
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlthnvj15f4hubnany:c+8X9G3vP3AMHhnvj15fTngy

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0ba0990a3523ed2d97a8c5d11eb35aaec0ed1213b9843c8f707a39aadf02f9dd
- Size
  
  2.7MB
- MD5
  
  aee611e2e1b004f6722d8de5de70a088
- SHA1
  
  cc204f23f7bb614ee9d9ca2097e6ba97a83fae0a
- SHA256
  
  0ba0990a3523ed2d97a8c5d11eb35aaec0ed1213b9843c8f707a39aadf02f9dd
- SHA512
  
  ffc7152af82d24981f1f444f6d01d3b5ee660cff254d9f6d93068c0f5ff782ab573f8646e7d67d33350387233d3ae9469df9cf5e6a6b705dd379f20d0329f0ab
- SSDEEP
  
  49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlthnvj15f4hubnany:c+8X9G3vP3AMHhnvj15fTngy
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2