2e519cb4ff9bc6a50e4d9532f4b6d81b4ed2e9ade9df7ab0f913116cd5983951 | Triage

Sharing

General

Target

2e519cb4ff9bc6a50e4d9532f4b6d81b4ed2e9ade9df7ab0f913116cd5983951
Size

3.4MB
Sample

231003-r6ptaaea28
MD5

95c64894532df5043fcbe0d857ffcb18
SHA1

f2c5e7e256c3bea692a1896cc6fc0bca2735aae7
SHA256

2e519cb4ff9bc6a50e4d9532f4b6d81b4ed2e9ade9df7ab0f913116cd5983951
SHA512

71f338b28df9a63f835d026d6590ad7b05a3772f3f15ce9881cd653cded56421bc34921d835bad3ac259e83d044a90450573ec298e014d34e377fa813a08866b
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlzWuouuckIyX7Jx0X8Qvn:Q+8X9G3vP3AMAutuckvrJx0Rf

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2e519cb4ff9bc6a50e4d9532f4b6d81b4ed2e9ade9df7ab0f913116cd5983951
- Size
  
  3.4MB
- MD5
  
  95c64894532df5043fcbe0d857ffcb18
- SHA1
  
  f2c5e7e256c3bea692a1896cc6fc0bca2735aae7
- SHA256
  
  2e519cb4ff9bc6a50e4d9532f4b6d81b4ed2e9ade9df7ab0f913116cd5983951
- SHA512
  
  71f338b28df9a63f835d026d6590ad7b05a3772f3f15ce9881cd653cded56421bc34921d835bad3ac259e83d044a90450573ec298e014d34e377fa813a08866b
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlzWuouuckIyX7Jx0X8Qvn:Q+8X9G3vP3AMAutuckvrJx0Rf
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2