109071da6f3049481eb2e15b7891c3590e9f4209f1ea4d45d4148bdf270969a4 | Triage

Sharing

General

Target

109071da6f3049481eb2e15b7891c3590e9f4209f1ea4d45d4148bdf270969a4
Size

3.5MB
Sample

231008-xrzb3afd4s
MD5

cb4aa1d38c6416baec7cf1cb3836a5b1
SHA1

8eeab88a01ec2474830bc7abc65353813a451372
SHA256

109071da6f3049481eb2e15b7891c3590e9f4209f1ea4d45d4148bdf270969a4
SHA512

0001abaeb423ebd94116cbc530e799740e9f0a897f8c20acafac3dd77c5d60e59ba4552e1089bd2840227a3576d413b97b523e9c46c864fe23055cfa0db227cf
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTl3m5egObmkBJkMW2SUZc8tlY8vhrNi:c+8X9G3vP3AMI5cILhwlY8po

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  109071da6f3049481eb2e15b7891c3590e9f4209f1ea4d45d4148bdf270969a4
- Size
  
  3.5MB
- MD5
  
  cb4aa1d38c6416baec7cf1cb3836a5b1
- SHA1
  
  8eeab88a01ec2474830bc7abc65353813a451372
- SHA256
  
  109071da6f3049481eb2e15b7891c3590e9f4209f1ea4d45d4148bdf270969a4
- SHA512
  
  0001abaeb423ebd94116cbc530e799740e9f0a897f8c20acafac3dd77c5d60e59ba4552e1089bd2840227a3576d413b97b523e9c46c864fe23055cfa0db227cf
- SSDEEP
  
  49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTl3m5egObmkBJkMW2SUZc8tlY8vhrNi:c+8X9G3vP3AMI5cILhwlY8po
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2