a642e06661af15e2c260773a3acbd1549e0b7aa15cedeb214178245e3a70f099 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a642e06661af15e2c260773a3acbd1549e0b7aa15cedeb214178245e3a70f099
Size

3.2MB
Sample

231002-msvedsah57
MD5

d0958f4da56f7b55b3d602c6c3031c0b
SHA1

374ad20e11a240222392bde59285326fb02296e1
SHA256

a642e06661af15e2c260773a3acbd1549e0b7aa15cedeb214178245e3a70f099
SHA512

5869a70b2fbf9ca92b6f86221ac64eafb671f315ef4b19a021954480dfe6f008373be02fc14b1a00a52f9c979abebee41d772ffca2a9dedcdd3ad1b9622c6467
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlrATtiZdf+uIfi:c+8X9G3vP3AM90QZdf+uIfi

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a642e06661af15e2c260773a3acbd1549e0b7aa15cedeb214178245e3a70f099
- Size
  
  3.2MB
- MD5
  
  d0958f4da56f7b55b3d602c6c3031c0b
- SHA1
  
  374ad20e11a240222392bde59285326fb02296e1
- SHA256
  
  a642e06661af15e2c260773a3acbd1549e0b7aa15cedeb214178245e3a70f099
- SHA512
  
  5869a70b2fbf9ca92b6f86221ac64eafb671f315ef4b19a021954480dfe6f008373be02fc14b1a00a52f9c979abebee41d772ffca2a9dedcdd3ad1b9622c6467
- SSDEEP
  
  49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlrATtiZdf+uIfi:c+8X9G3vP3AM90QZdf+uIfi
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2