3b6668369240e02086855c293981ab478f4e8a481d55991ab60f282294c8d903 | Triage

Sharing

General

Target

3b6668369240e02086855c293981ab478f4e8a481d55991ab60f282294c8d903
Size

3.5MB
Sample

230827-qzhkysbf2w
MD5

347f0bcf14ca37bd003c5dd5e189ded6
SHA1

5506b3723ae92c1c4805593390b8bda069c79e33
SHA256

3b6668369240e02086855c293981ab478f4e8a481d55991ab60f282294c8d903
SHA512

435efa3d34e54f9b652df33cd1f529fe455363172fb166e3fe5793ee8b6bb17d951ff72821b4e836e4b1009f8fdcde97fb0b56351a10df27ddc299ce42344e02
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlofsHNq3b8teSyu8l:c+8X9G3vP3AMbHNq3IIf

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  3b6668369240e02086855c293981ab478f4e8a481d55991ab60f282294c8d903
- Size
  
  3.5MB
- MD5
  
  347f0bcf14ca37bd003c5dd5e189ded6
- SHA1
  
  5506b3723ae92c1c4805593390b8bda069c79e33
- SHA256
  
  3b6668369240e02086855c293981ab478f4e8a481d55991ab60f282294c8d903
- SHA512
  
  435efa3d34e54f9b652df33cd1f529fe455363172fb166e3fe5793ee8b6bb17d951ff72821b4e836e4b1009f8fdcde97fb0b56351a10df27ddc299ce42344e02
- SSDEEP
  
  49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlofsHNq3b8teSyu8l:c+8X9G3vP3AMbHNq3IIf
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2