d26d33d96454c55131f7cc704444b0c2634b6ba2d041641f2a95b7f19c4e055c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d26d33d96454c55131f7cc704444b0c2634b6ba2d041641f2a95b7f19c4e055c
Size

3.5MB
Sample

231011-18hx7ahf77
MD5

6018697dee2ea99802cb96ea51e62832
SHA1

7ea78aff547ed280c73b973f463ca648e081fbcb
SHA256

d26d33d96454c55131f7cc704444b0c2634b6ba2d041641f2a95b7f19c4e055c
SHA512

e1f181d90a7888cc55b8ecfe8d272d5fc4e070c0974db1247df184fd62829b6cb1386741770a3c5b03c47c1c498108d8102892d443be39548f0ee35ce1c7ac24
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTl+i650oXhlxWZInV61JBUTi:Q+8X9G3vP3AMEf0ClYS8UTi

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  d26d33d96454c55131f7cc704444b0c2634b6ba2d041641f2a95b7f19c4e055c
- Size
  
  3.5MB
- MD5
  
  6018697dee2ea99802cb96ea51e62832
- SHA1
  
  7ea78aff547ed280c73b973f463ca648e081fbcb
- SHA256
  
  d26d33d96454c55131f7cc704444b0c2634b6ba2d041641f2a95b7f19c4e055c
- SHA512
  
  e1f181d90a7888cc55b8ecfe8d272d5fc4e070c0974db1247df184fd62829b6cb1386741770a3c5b03c47c1c498108d8102892d443be39548f0ee35ce1c7ac24
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTl+i650oXhlxWZInV61JBUTi:Q+8X9G3vP3AMEf0ClYS8UTi
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2