a68dd612c48e0e8a84ec04e1439c1ea7f147daf07dd3159e83ca81e46e877326 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a68dd612c48e0e8a84ec04e1439c1ea7f147daf07dd3159e83ca81e46e877326
Size

3.5MB
Sample

231002-mh535saf99
MD5

b17ff99062486c3b2fbc5e18d521c99b
SHA1

e5416414ce17d6398181b7e1dd409df0c22b5018
SHA256

a68dd612c48e0e8a84ec04e1439c1ea7f147daf07dd3159e83ca81e46e877326
SHA512

88b246e4657660101b5e702c040d1b63cbcd8b37b901e70cd63f931fe50daf0049d27ecd2aefbbd8fef0c64646839d1948e9fb72afab5fd6c2164185209801af
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTl+y0yGMhg7M6eGjiODt:Q+8X9G3vP3AMraMhg7MlGj3t

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a68dd612c48e0e8a84ec04e1439c1ea7f147daf07dd3159e83ca81e46e877326
- Size
  
  3.5MB
- MD5
  
  b17ff99062486c3b2fbc5e18d521c99b
- SHA1
  
  e5416414ce17d6398181b7e1dd409df0c22b5018
- SHA256
  
  a68dd612c48e0e8a84ec04e1439c1ea7f147daf07dd3159e83ca81e46e877326
- SHA512
  
  88b246e4657660101b5e702c040d1b63cbcd8b37b901e70cd63f931fe50daf0049d27ecd2aefbbd8fef0c64646839d1948e9fb72afab5fd6c2164185209801af
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTl+y0yGMhg7M6eGjiODt:Q+8X9G3vP3AMraMhg7MlGj3t
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2