cadafee8d8709cf1512f613055e688c5c1972cebab2f96b32fa91b60a5b9c422 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cadafee8d8709cf1512f613055e688c5c1972cebab2f96b32fa91b60a5b9c422
Size

3.6MB
Sample

231010-1khbradb51
MD5

c408dcd9d9ee5b097ed02061ec92bc57
SHA1

d11dcb3a865232e78344d713cf5e0ac56b7db414
SHA256

cadafee8d8709cf1512f613055e688c5c1972cebab2f96b32fa91b60a5b9c422
SHA512

e01aa1be33f6d94b4ede3f85b655c41e039a7d7916c59e96b48425c8f2ff519c0564a4ac66988a6553968c049a3b8461720f5c25eadd9ee6cf180c0fbb5010d0
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlC5S8oCgF5w/rt7sR:c+8X9G3vP3AMnCM5wDtIR

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  cadafee8d8709cf1512f613055e688c5c1972cebab2f96b32fa91b60a5b9c422
- Size
  
  3.6MB
- MD5
  
  c408dcd9d9ee5b097ed02061ec92bc57
- SHA1
  
  d11dcb3a865232e78344d713cf5e0ac56b7db414
- SHA256
  
  cadafee8d8709cf1512f613055e688c5c1972cebab2f96b32fa91b60a5b9c422
- SHA512
  
  e01aa1be33f6d94b4ede3f85b655c41e039a7d7916c59e96b48425c8f2ff519c0564a4ac66988a6553968c049a3b8461720f5c25eadd9ee6cf180c0fbb5010d0
- SSDEEP
  
  49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlC5S8oCgF5w/rt7sR:c+8X9G3vP3AMnCM5wDtIR
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2