a26942c0d6ed2aab74967a7868b68542a312962f6bee6800db6fe2e1b9fb0684 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a26942c0d6ed2aab74967a7868b68542a312962f6bee6800db6fe2e1b9fb0684
Size

2.9MB
Sample

231012-a8q1pagd82
MD5

99167e76e9a11b6502134dff1a359c3d
SHA1

d74e72232deeaa676372bcda50b04e5f5a31d576
SHA256

a26942c0d6ed2aab74967a7868b68542a312962f6bee6800db6fe2e1b9fb0684
SHA512

21bb8d1a055979b95f8677012d56d0f2eaa1b91f2fd299b6058a25631dd1462bd9200105435fa12f7e85cf51fae66fa278ac57edd0bc76c4c749fe734bc4ec93
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlf7JLE/yiNU3Zsvz6:Q+8X9G3vP3AMZpDiIsvW

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a26942c0d6ed2aab74967a7868b68542a312962f6bee6800db6fe2e1b9fb0684
- Size
  
  2.9MB
- MD5
  
  99167e76e9a11b6502134dff1a359c3d
- SHA1
  
  d74e72232deeaa676372bcda50b04e5f5a31d576
- SHA256
  
  a26942c0d6ed2aab74967a7868b68542a312962f6bee6800db6fe2e1b9fb0684
- SHA512
  
  21bb8d1a055979b95f8677012d56d0f2eaa1b91f2fd299b6058a25631dd1462bd9200105435fa12f7e85cf51fae66fa278ac57edd0bc76c4c749fe734bc4ec93
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlf7JLE/yiNU3Zsvz6:Q+8X9G3vP3AMZpDiIsvW
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2