868b6c7f4f3986f08c9c7139f5bb7b8d729886c000ab5fb0fb668fc38fc2a804 | Triage

Sharing

General

Target

868b6c7f4f3986f08c9c7139f5bb7b8d729886c000ab5fb0fb668fc38fc2a804
Size

2.7MB
Sample

231012-p7nw9sah21
MD5

f88bf9e6968ef6ecbc39ab78a9003bab
SHA1

a765fa408f97314da7e1f1c8317d2ae89ac6ca23
SHA256

868b6c7f4f3986f08c9c7139f5bb7b8d729886c000ab5fb0fb668fc38fc2a804
SHA512

3622d976c91cb91fd9ce2343b8b5e692c2801d6fa75ec96e166d2abc8426eb4d12bfba0823be423971261f6aa845de3738100fcb84c54853dc9a2a011298ba17
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlOb6HPjW9IekakKfNhlP:Q+8X9G3vP3AMcb6H11akkNX

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  868b6c7f4f3986f08c9c7139f5bb7b8d729886c000ab5fb0fb668fc38fc2a804
- Size
  
  2.7MB
- MD5
  
  f88bf9e6968ef6ecbc39ab78a9003bab
- SHA1
  
  a765fa408f97314da7e1f1c8317d2ae89ac6ca23
- SHA256
  
  868b6c7f4f3986f08c9c7139f5bb7b8d729886c000ab5fb0fb668fc38fc2a804
- SHA512
  
  3622d976c91cb91fd9ce2343b8b5e692c2801d6fa75ec96e166d2abc8426eb4d12bfba0823be423971261f6aa845de3738100fcb84c54853dc9a2a011298ba17
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlOb6HPjW9IekakKfNhlP:Q+8X9G3vP3AMcb6H11akkNX
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2