a930a6bb91e6838ca7a46dee2095203218077593db9b8ef7041488ecd119c26b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a930a6bb91e6838ca7a46dee2095203218077593db9b8ef7041488ecd119c26b
Size

2.9MB
Sample

231011-nzh6dadb6t
MD5

e254cdf5bbf21b4f13d9e546ae5950cc
SHA1

92d11e3d18cca142e2750fbebc90bb2c26e5274c
SHA256

a930a6bb91e6838ca7a46dee2095203218077593db9b8ef7041488ecd119c26b
SHA512

c448f27ff2504bed0dcf1d53a67b0c6bef4abdc43dbf541fbe41f30b09d9cea4a3cca75bb49170390c17e660cacf3ea35d5d0a57a2727e0667d458578f325a36
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlM7sgi/UG5rmWzc3fP:Q+8X9G3vP3AMWHiRx7cPP

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a930a6bb91e6838ca7a46dee2095203218077593db9b8ef7041488ecd119c26b
- Size
  
  2.9MB
- MD5
  
  e254cdf5bbf21b4f13d9e546ae5950cc
- SHA1
  
  92d11e3d18cca142e2750fbebc90bb2c26e5274c
- SHA256
  
  a930a6bb91e6838ca7a46dee2095203218077593db9b8ef7041488ecd119c26b
- SHA512
  
  c448f27ff2504bed0dcf1d53a67b0c6bef4abdc43dbf541fbe41f30b09d9cea4a3cca75bb49170390c17e660cacf3ea35d5d0a57a2727e0667d458578f325a36
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlM7sgi/UG5rmWzc3fP:Q+8X9G3vP3AMWHiRx7cPP
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2