a61245c0e11482e420375140c61b50c8351e173dca69e85d3b6c8bab4f244764 | Triage

Sharing

General

Target

a61245c0e11482e420375140c61b50c8351e173dca69e85d3b6c8bab4f244764
Size

2.6MB
Sample

231008-xjzymahf82
MD5

9ae3ba71b969341149ea15969cc1f0bd
SHA1

ed71e01c5d0e456c710352742c4c1710ab65f801
SHA256

a61245c0e11482e420375140c61b50c8351e173dca69e85d3b6c8bab4f244764
SHA512

367077d29ced4e6d08d5f0be11e796d6fcaa0119f9baa46d489ea8a302ad71a89ac48832d7c83dc79b13c92e932ceccae5186ac461113cdfa9fe21af89b69d7b
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlLtLTWHZ48H350rwu9pp+:Q+8X9G3vP3AMtFTWHy8HpGwA+

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a61245c0e11482e420375140c61b50c8351e173dca69e85d3b6c8bab4f244764
- Size
  
  2.6MB
- MD5
  
  9ae3ba71b969341149ea15969cc1f0bd
- SHA1
  
  ed71e01c5d0e456c710352742c4c1710ab65f801
- SHA256
  
  a61245c0e11482e420375140c61b50c8351e173dca69e85d3b6c8bab4f244764
- SHA512
  
  367077d29ced4e6d08d5f0be11e796d6fcaa0119f9baa46d489ea8a302ad71a89ac48832d7c83dc79b13c92e932ceccae5186ac461113cdfa9fe21af89b69d7b
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlLtLTWHZ48H350rwu9pp+:Q+8X9G3vP3AMtFTWHy8HpGwA+
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2