e2905f49ad83a5b69b313ae9a5a234f75ba38199370fbe8aecc54350b938ff19 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e2905f49ad83a5b69b313ae9a5a234f75ba38199370fbe8aecc54350b938ff19
Size

2.7MB
Sample

231011-vt4cpabe6z
MD5

ba441c08b7c1e67a861fd0eba86ac74f
SHA1

d7943718150f9dd7d313aa2e6f3e997cb8ac5b4b
SHA256

e2905f49ad83a5b69b313ae9a5a234f75ba38199370fbe8aecc54350b938ff19
SHA512

ab0366b1bdb5e71b632f7b23595fedb399351be44428d16911abc9b2d0016e915401d08a956850f7e5a788263888f9bc9248f013a84f0d3c2adaaec1da302fca
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlor7pIIF:c+8X9G3vP3AMqyu

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  e2905f49ad83a5b69b313ae9a5a234f75ba38199370fbe8aecc54350b938ff19
- Size
  
  2.7MB
- MD5
  
  ba441c08b7c1e67a861fd0eba86ac74f
- SHA1
  
  d7943718150f9dd7d313aa2e6f3e997cb8ac5b4b
- SHA256
  
  e2905f49ad83a5b69b313ae9a5a234f75ba38199370fbe8aecc54350b938ff19
- SHA512
  
  ab0366b1bdb5e71b632f7b23595fedb399351be44428d16911abc9b2d0016e915401d08a956850f7e5a788263888f9bc9248f013a84f0d3c2adaaec1da302fca
- SSDEEP
  
  49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlor7pIIF:c+8X9G3vP3AMqyu
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2