a9b8665ab0f12ad2dc49d0db8d6f5df7c87900b864e775bcaf813d4daf6d2597 | Triage

Sharing

General

Target

a9b8665ab0f12ad2dc49d0db8d6f5df7c87900b864e775bcaf813d4daf6d2597
Size

3.5MB
Sample

231011-b99d4abf99
MD5

45a29f56701fb904d9e2b97099b9ed01
SHA1

3992c45a7951cc57404b51e83ef82e6bc0c31f69
SHA256

a9b8665ab0f12ad2dc49d0db8d6f5df7c87900b864e775bcaf813d4daf6d2597
SHA512

a8b367037b01823827b9c0ede9816ad84316a6e7fa3c8b8bdecd1ee0e304a465f782ccd98ab68b10daf6e5bb0e30063ae9a4d9976fbba982c5d4bfea28873f66
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTl7RTx6KQYLvqh1ueGa3vW3T0TWgu:c+8X9G3vP3AM5OYLyfueGa/WwTLu

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a9b8665ab0f12ad2dc49d0db8d6f5df7c87900b864e775bcaf813d4daf6d2597
- Size
  
  3.5MB
- MD5
  
  45a29f56701fb904d9e2b97099b9ed01
- SHA1
  
  3992c45a7951cc57404b51e83ef82e6bc0c31f69
- SHA256
  
  a9b8665ab0f12ad2dc49d0db8d6f5df7c87900b864e775bcaf813d4daf6d2597
- SHA512
  
  a8b367037b01823827b9c0ede9816ad84316a6e7fa3c8b8bdecd1ee0e304a465f782ccd98ab68b10daf6e5bb0e30063ae9a4d9976fbba982c5d4bfea28873f66
- SSDEEP
  
  49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTl7RTx6KQYLvqh1ueGa3vW3T0TWgu:c+8X9G3vP3AM5OYLyfueGa/WwTLu
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2