fd07f3856c737c54da0f06d249f263656c8eb271aa4af8b82db71c01391c9c45 | Triage

Sharing

General

Target

fd07f3856c737c54da0f06d249f263656c8eb271aa4af8b82db71c01391c9c45
Size

3.4MB
Sample

230827-sx6acacg3t
MD5

468e270d1d6bfd60cfdfb6880790616e
SHA1

8d436a9859d9060d045c66164b8a671747824986
SHA256

fd07f3856c737c54da0f06d249f263656c8eb271aa4af8b82db71c01391c9c45
SHA512

ce1ecf285e6c00387414144bea7569902bb6cf3d03e322b1c540e5d94768d98fbbd363f05c1e82f1c3db1083360755040f99f5cbc558524849937cafed1d4723
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlhAvrX2FvAJQdX:c+8X9G3vP3AMrALQv1X

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  fd07f3856c737c54da0f06d249f263656c8eb271aa4af8b82db71c01391c9c45
- Size
  
  3.4MB
- MD5
  
  468e270d1d6bfd60cfdfb6880790616e
- SHA1
  
  8d436a9859d9060d045c66164b8a671747824986
- SHA256
  
  fd07f3856c737c54da0f06d249f263656c8eb271aa4af8b82db71c01391c9c45
- SHA512
  
  ce1ecf285e6c00387414144bea7569902bb6cf3d03e322b1c540e5d94768d98fbbd363f05c1e82f1c3db1083360755040f99f5cbc558524849937cafed1d4723
- SSDEEP
  
  49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlhAvrX2FvAJQdX:c+8X9G3vP3AMrALQv1X
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2