b716f7817d32b02df5741cb8f77db6b25e32e3c2f39fcff1b1eb245f46b908dc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b716f7817d32b02df5741cb8f77db6b25e32e3c2f39fcff1b1eb245f46b908dc
Size

3.5MB
Sample

231006-rrh27aeh66
MD5

3462bec75bca11f4e03b6490b02e7e61
SHA1

d35ebf89f39d11bdb561f2b557bf00e53339c857
SHA256

b716f7817d32b02df5741cb8f77db6b25e32e3c2f39fcff1b1eb245f46b908dc
SHA512

563e37380483119675cc778e3a00ba39d32cc8fa6bcc42dbda632ac4872a0fc427184354606c54be7c5daefd65bfabd2f9b147478c2f71d7e5ef910c28019db8
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTleRHgcORlsZgZ/05M8YBCGy:Q+8X9G3vP3AMAHgcclsZgi5M1Bw

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  b716f7817d32b02df5741cb8f77db6b25e32e3c2f39fcff1b1eb245f46b908dc
- Size
  
  3.5MB
- MD5
  
  3462bec75bca11f4e03b6490b02e7e61
- SHA1
  
  d35ebf89f39d11bdb561f2b557bf00e53339c857
- SHA256
  
  b716f7817d32b02df5741cb8f77db6b25e32e3c2f39fcff1b1eb245f46b908dc
- SHA512
  
  563e37380483119675cc778e3a00ba39d32cc8fa6bcc42dbda632ac4872a0fc427184354606c54be7c5daefd65bfabd2f9b147478c2f71d7e5ef910c28019db8
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTleRHgcORlsZgZ/05M8YBCGy:Q+8X9G3vP3AMAHgcclsZgi5M1Bw
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2