ff1ebdff7458baf75266381b004aa94e4d4b7bb276c82759a3a493b3e6088c11 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-26_a3796221fbb1bc729accb395733739e9_mafia_JC.exe
Size

3.6MB
Sample

231011-my4v1shf4y
MD5

a3796221fbb1bc729accb395733739e9
SHA1

5f95f1676640c7db743772de8f6018d66db8c0da
SHA256

ff1ebdff7458baf75266381b004aa94e4d4b7bb276c82759a3a493b3e6088c11
SHA512

6b34567909460ded179f43813027b95919ea9e8b433bee62b9e7bfca87fc840d47f7f194c9f676d7e4c946e1b21618b04f3977569bed3f4e264b1e2af6d804f4
SSDEEP

49152:X9yiCJ5rFwnANZGEXep+9TxFegOSDAmosh3ANkTTlZi4lmmAV5V4fR18c0:IJ5rFwnApezgOS9V3AM64lmmAVYX0

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2023-08-26_a3796221fbb1bc729accb395733739e9_mafia_JC.exe
- Size
  
  3.6MB
- MD5
  
  a3796221fbb1bc729accb395733739e9
- SHA1
  
  5f95f1676640c7db743772de8f6018d66db8c0da
- SHA256
  
  ff1ebdff7458baf75266381b004aa94e4d4b7bb276c82759a3a493b3e6088c11
- SHA512
  
  6b34567909460ded179f43813027b95919ea9e8b433bee62b9e7bfca87fc840d47f7f194c9f676d7e4c946e1b21618b04f3977569bed3f4e264b1e2af6d804f4
- SSDEEP
  
  49152:X9yiCJ5rFwnANZGEXep+9TxFegOSDAmosh3ANkTTlZi4lmmAV5V4fR18c0:IJ5rFwnApezgOS9V3AM64lmmAVYX0
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2