2ccd5db0090dea577896c9b741ee5838ee23553abdb71d984ebb36edc126f77b | Triage

Sharing

General

Target

2ccd5db0090dea577896c9b741ee5838ee23553abdb71d984ebb36edc126f77b
Size

3.4MB
Sample

231006-r3wsesdb8v
MD5

3af27b56781577e0556b5bd0e5a91b8d
SHA1

74b94c9fa9727daf115b02aa577fe71b64a4d4ee
SHA256

2ccd5db0090dea577896c9b741ee5838ee23553abdb71d984ebb36edc126f77b
SHA512

7afe07b9b40fd8bc8c467d45261049c79828ed21480e3c3b4d2ecfecc0050e604fbebb1f60e2ddb3e501ce5d07dbebea141cad9599690c8aee1d23a5689ef9c7
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlCvXVpHbCcPv8ZpkzOnK+rd7J/DtcQ:c+8X9G3vP3AMsvXXbPPx+rddrtR

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2ccd5db0090dea577896c9b741ee5838ee23553abdb71d984ebb36edc126f77b
- Size
  
  3.4MB
- MD5
  
  3af27b56781577e0556b5bd0e5a91b8d
- SHA1
  
  74b94c9fa9727daf115b02aa577fe71b64a4d4ee
- SHA256
  
  2ccd5db0090dea577896c9b741ee5838ee23553abdb71d984ebb36edc126f77b
- SHA512
  
  7afe07b9b40fd8bc8c467d45261049c79828ed21480e3c3b4d2ecfecc0050e604fbebb1f60e2ddb3e501ce5d07dbebea141cad9599690c8aee1d23a5689ef9c7
- SSDEEP
  
  49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlCvXVpHbCcPv8ZpkzOnK+rd7J/DtcQ:c+8X9G3vP3AMsvXXbPPx+rddrtR
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2