17d035b6b4193af8ecd79a7aef9887aa8d5a46cdf856377d71cbc754bb6c87ac | Triage

Sharing

General

Target

17d035b6b4193af8ecd79a7aef9887aa8d5a46cdf856377d71cbc754bb6c87ac
Size

2.9MB
Sample

231012-jh7eesgf47
MD5

70ab3ea14c407944eebdc3c4e87fc54e
SHA1

8ed07818e087e5ce629719a6ec6874236e0db6e7
SHA256

17d035b6b4193af8ecd79a7aef9887aa8d5a46cdf856377d71cbc754bb6c87ac
SHA512

2c7645f49b31c4cc58d90e27167bcb37e188ca51e02a1e2a5f7982153752e5014197aa29e80ba37f669fe0f6487650002e137564b7da264a23d54a1f7de7b3c0
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTltIIPrcRZWiz59X:Q+8X9G3vP3AM7pw9lV

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  17d035b6b4193af8ecd79a7aef9887aa8d5a46cdf856377d71cbc754bb6c87ac
- Size
  
  2.9MB
- MD5
  
  70ab3ea14c407944eebdc3c4e87fc54e
- SHA1
  
  8ed07818e087e5ce629719a6ec6874236e0db6e7
- SHA256
  
  17d035b6b4193af8ecd79a7aef9887aa8d5a46cdf856377d71cbc754bb6c87ac
- SHA512
  
  2c7645f49b31c4cc58d90e27167bcb37e188ca51e02a1e2a5f7982153752e5014197aa29e80ba37f669fe0f6487650002e137564b7da264a23d54a1f7de7b3c0
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTltIIPrcRZWiz59X:Q+8X9G3vP3AM7pw9lV
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2