80059ca35d78217d745cf25071c1f2983024bd4da9a116f1605d207b32b4f00f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

80059ca35d78217d745cf25071c1f2983024bd4da9a116f1605d207b32b4f00f
Size

2.9MB
Sample

231011-z1d4lafc93
MD5

66dd3874cb5a8c62c3c5af6157ffa626
SHA1

f38333915850a732233669b4cdce075fe13f9844
SHA256

80059ca35d78217d745cf25071c1f2983024bd4da9a116f1605d207b32b4f00f
SHA512

d011c91b2151a07ec1835d3d1317770f54c6626ac553ef42fa1619dc352af741043a765704a3757249712223b8ea250fae1727c73ae5a6460659d5af860d6275
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTllkdY84sAthdoxtivJcL1lTrRi+H:c+8X9G3vP3AMMdYzdsrYi

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  80059ca35d78217d745cf25071c1f2983024bd4da9a116f1605d207b32b4f00f
- Size
  
  2.9MB
- MD5
  
  66dd3874cb5a8c62c3c5af6157ffa626
- SHA1
  
  f38333915850a732233669b4cdce075fe13f9844
- SHA256
  
  80059ca35d78217d745cf25071c1f2983024bd4da9a116f1605d207b32b4f00f
- SHA512
  
  d011c91b2151a07ec1835d3d1317770f54c6626ac553ef42fa1619dc352af741043a765704a3757249712223b8ea250fae1727c73ae5a6460659d5af860d6275
- SSDEEP
  
  49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTllkdY84sAthdoxtivJcL1lTrRi+H:c+8X9G3vP3AMMdYzdsrYi
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2