71b7c48d1511a6b125d82fbfbbb50797255d05b0afc0a872c730c3489b4be896 | Triage

Sharing

General

Target

71b7c48d1511a6b125d82fbfbbb50797255d05b0afc0a872c730c3489b4be896
Size

3.5MB
Sample

231010-anzgbshc7t
MD5

8b42f59553eb78ad75d30b2cfee6fab2
SHA1

494bbffee4e1eca762196e87178c1db6bff8b17d
SHA256

71b7c48d1511a6b125d82fbfbbb50797255d05b0afc0a872c730c3489b4be896
SHA512

ce17fa6bd11dcc9eee9987ec1e0d9a9481e2f781b3a7190d3a5e0030b0a80616873db6f6897e3a5a737c602eb14c3512a3b3bd97cd69dad69f4af94a16a40fab
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTl8lE36bRdwc1tQf1AyO:c+8X9G3vP3AM2lEoAAyO

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  71b7c48d1511a6b125d82fbfbbb50797255d05b0afc0a872c730c3489b4be896
- Size
  
  3.5MB
- MD5
  
  8b42f59553eb78ad75d30b2cfee6fab2
- SHA1
  
  494bbffee4e1eca762196e87178c1db6bff8b17d
- SHA256
  
  71b7c48d1511a6b125d82fbfbbb50797255d05b0afc0a872c730c3489b4be896
- SHA512
  
  ce17fa6bd11dcc9eee9987ec1e0d9a9481e2f781b3a7190d3a5e0030b0a80616873db6f6897e3a5a737c602eb14c3512a3b3bd97cd69dad69f4af94a16a40fab
- SSDEEP
  
  49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTl8lE36bRdwc1tQf1AyO:c+8X9G3vP3AM2lEoAAyO
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2