17de73714041ae86d0f9fc0c6dab7d3f5b87bb248d36606f08e164254343f5a4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

17de73714041ae86d0f9fc0c6dab7d3f5b87bb248d36606f08e164254343f5a4
Size

3.5MB
Sample

231012-brt7fshf64
MD5

5d318593b63f7a7ae32015a49b52f577
SHA1

9ccf00fcb64a1472aa03231323344b524cdeed10
SHA256

17de73714041ae86d0f9fc0c6dab7d3f5b87bb248d36606f08e164254343f5a4
SHA512

da1b592f33437baaeeba2c335a1b1359d5783cb24828795af7c2493e9872198e89abf951d585c0b3a963b60aadde09c3888d9a14ea7edf7c9086192c76cb17d5
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTljrKqKlmihaBkc5T:Q+8X9G3vP3AMxmlmicBkE

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  17de73714041ae86d0f9fc0c6dab7d3f5b87bb248d36606f08e164254343f5a4
- Size
  
  3.5MB
- MD5
  
  5d318593b63f7a7ae32015a49b52f577
- SHA1
  
  9ccf00fcb64a1472aa03231323344b524cdeed10
- SHA256
  
  17de73714041ae86d0f9fc0c6dab7d3f5b87bb248d36606f08e164254343f5a4
- SHA512
  
  da1b592f33437baaeeba2c335a1b1359d5783cb24828795af7c2493e9872198e89abf951d585c0b3a963b60aadde09c3888d9a14ea7edf7c9086192c76cb17d5
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTljrKqKlmihaBkc5T:Q+8X9G3vP3AMxmlmicBkE
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2