e78f34f69b584a82579fa5679e1cdf4b29db7ad333a13f10e40ec9e0b2eed635 | Triage

Sharing

General

Target

e78f34f69b584a82579fa5679e1cdf4b29db7ad333a13f10e40ec9e0b2eed635
Size

3.0MB
Sample

231012-eatfdafc32
MD5

d99a686afcfc098b5cd5bbe82a0cbff0
SHA1

197d898d50408d712cb07f9b09fe87322ff8bfc1
SHA256

e78f34f69b584a82579fa5679e1cdf4b29db7ad333a13f10e40ec9e0b2eed635
SHA512

92bad6945d30648a503f6f1949604afb0ab7825c9dd69254cb57b2ef2c1fd7782c987b266d779df9233ae2a93bcc00f226698cbd987f1191bfa7424421d6a8fd
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlnzScs3PyrIEvmsS:Q+8X9G3vP3AMhVs/wI4fS

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  e78f34f69b584a82579fa5679e1cdf4b29db7ad333a13f10e40ec9e0b2eed635
- Size
  
  3.0MB
- MD5
  
  d99a686afcfc098b5cd5bbe82a0cbff0
- SHA1
  
  197d898d50408d712cb07f9b09fe87322ff8bfc1
- SHA256
  
  e78f34f69b584a82579fa5679e1cdf4b29db7ad333a13f10e40ec9e0b2eed635
- SHA512
  
  92bad6945d30648a503f6f1949604afb0ab7825c9dd69254cb57b2ef2c1fd7782c987b266d779df9233ae2a93bcc00f226698cbd987f1191bfa7424421d6a8fd
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlnzScs3PyrIEvmsS:Q+8X9G3vP3AMhVs/wI4fS
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2