4af1b1a515e19e273ac9f62ee20073165806433becce53ffdedd50a3534654e4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4af1b1a515e19e273ac9f62ee20073165806433becce53ffdedd50a3534654e4
Size

2.9MB
Sample

231003-srvlnacg4x
MD5

bb7a725faf1bb2c441ef556fae3bf144
SHA1

5aec4f7bec6e5dbc272f6111705855b20fdda22b
SHA256

4af1b1a515e19e273ac9f62ee20073165806433becce53ffdedd50a3534654e4
SHA512

dd9ff4d636789ab9975b55e285c929aa95582e63c038d704c2f119405981df2ff18155180af9dd0c2f36d9ddf8ded2a727be805c800846262a88477f2cda8742
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlUO9kdf6i9Czk35iLtRS:Q+8X9G3vP3AMKOOdX9Czk35i5RS

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  4af1b1a515e19e273ac9f62ee20073165806433becce53ffdedd50a3534654e4
- Size
  
  2.9MB
- MD5
  
  bb7a725faf1bb2c441ef556fae3bf144
- SHA1
  
  5aec4f7bec6e5dbc272f6111705855b20fdda22b
- SHA256
  
  4af1b1a515e19e273ac9f62ee20073165806433becce53ffdedd50a3534654e4
- SHA512
  
  dd9ff4d636789ab9975b55e285c929aa95582e63c038d704c2f119405981df2ff18155180af9dd0c2f36d9ddf8ded2a727be805c800846262a88477f2cda8742
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlUO9kdf6i9Czk35iLtRS:Q+8X9G3vP3AMKOOdX9Czk35i5RS
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2