b2afe799584c913532c673f99ade45113bf5a5b605a964ce9fa837f563b6fc21 | Triage

Sharing

General

Target

Everything-1.4.1.1024.x64-Setup.exe
Size

1.8MB
Sample

230828-xf6a8shg2t
MD5

5036e609163e98f3ac06d5e82b677df8
SHA1

176db10a4cda7104f24eece2d87e1a664b7fb929
SHA256

b2afe799584c913532c673f99ade45113bf5a5b605a964ce9fa837f563b6fc21
SHA512

40c4332e2e4132fc7f3a5f0738a67e7725b329c4a4b0643fbc65f5d1de3ca4b6bf7374c2a722ea05f01a5e2ddd458344289fdb39bbb092a0b64e63eb168313e4
SSDEEP

49152:W45XjhjuyXlt4+3oNBGsCornEsYwmve86irCrHEOP:W45XtjLVt4tJ/pmNHerv

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  Everything-1.4.1.1024.x64-Setup.exe
- Size
  
  1.8MB
- MD5
  
  5036e609163e98f3ac06d5e82b677df8
- SHA1
  
  176db10a4cda7104f24eece2d87e1a664b7fb929
- SHA256
  
  b2afe799584c913532c673f99ade45113bf5a5b605a964ce9fa837f563b6fc21
- SHA512
  
  40c4332e2e4132fc7f3a5f0738a67e7725b329c4a4b0643fbc65f5d1de3ca4b6bf7374c2a722ea05f01a5e2ddd458344289fdb39bbb092a0b64e63eb168313e4
- SSDEEP
  
  49152:W45XjhjuyXlt4+3oNBGsCornEsYwmve86irCrHEOP:W45XtjLVt4tJ/pmNHerv
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2