df6de537bb28372884d6c12924b3308e43a767e1e741370905870453a70061d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

df6de537bb28372884d6c12924b3308e43a767e1e741370905870453a70061d2
Size

3.3MB
Sample

230930-n2t1nacg58
MD5

e1f0c979b765ddb0d54bea03e415e63d
SHA1

fe09fce344c2955c7a60bdbb1009c9c30caca8b9
SHA256

df6de537bb28372884d6c12924b3308e43a767e1e741370905870453a70061d2
SHA512

a24d5b443ccf20d487701954ee17a788da777ce11e6b4959e47b381e5629bfdc9c8bc002c7ac34eb5be83c15bfadab52e35961bc9f578a41f4a0a8971091cce6
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlqqCiCzu0YDQWy92DV:Q+8X9G3vP3AMcqCi0hch

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  df6de537bb28372884d6c12924b3308e43a767e1e741370905870453a70061d2
- Size
  
  3.3MB
- MD5
  
  e1f0c979b765ddb0d54bea03e415e63d
- SHA1
  
  fe09fce344c2955c7a60bdbb1009c9c30caca8b9
- SHA256
  
  df6de537bb28372884d6c12924b3308e43a767e1e741370905870453a70061d2
- SHA512
  
  a24d5b443ccf20d487701954ee17a788da777ce11e6b4959e47b381e5629bfdc9c8bc002c7ac34eb5be83c15bfadab52e35961bc9f578a41f4a0a8971091cce6
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlqqCiCzu0YDQWy92DV:Q+8X9G3vP3AMcqCi0hch
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2