9ed0d0a9e58ef3d5d18aebaa3d7071f2f66fc5747febbc410dfe62e3f163ccc5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9ed0d0a9e58ef3d5d18aebaa3d7071f2f66fc5747febbc410dfe62e3f163ccc5
Size

3.5MB
Sample

231002-g7kwlsff9w
MD5

3df55a0009c219248694169a6f5481f1
SHA1

1203466e89ff206bec1d2eda68c34f295f81d533
SHA256

9ed0d0a9e58ef3d5d18aebaa3d7071f2f66fc5747febbc410dfe62e3f163ccc5
SHA512

aeb8286013c39b0467fc141deb5b6a4ab8a3a86e0534b8569eaab8999965ae3047292fbcb3c925a2286563cbc4ffc8cbe437b38ef2dc996f0e49c9e8c793d62b
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTliUqpPCf3ByYWtxe2dH9FF1ATmQ:Q+8X9G3vP3AMapqpyymQ

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  9ed0d0a9e58ef3d5d18aebaa3d7071f2f66fc5747febbc410dfe62e3f163ccc5
- Size
  
  3.5MB
- MD5
  
  3df55a0009c219248694169a6f5481f1
- SHA1
  
  1203466e89ff206bec1d2eda68c34f295f81d533
- SHA256
  
  9ed0d0a9e58ef3d5d18aebaa3d7071f2f66fc5747febbc410dfe62e3f163ccc5
- SHA512
  
  aeb8286013c39b0467fc141deb5b6a4ab8a3a86e0534b8569eaab8999965ae3047292fbcb3c925a2286563cbc4ffc8cbe437b38ef2dc996f0e49c9e8c793d62b
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTliUqpPCf3ByYWtxe2dH9FF1ATmQ:Q+8X9G3vP3AMapqpyymQ
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2