48c37b16cde06a12dfdd6ca97e02e1642c5cb10713dc80de97d755d1e9629eac | Triage

Sharing

General

Target

48c37b16cde06a12dfdd6ca97e02e1642c5cb10713dc80de97d755d1e9629eac
Size

3.6MB
Sample

231012-xdytdage5t
MD5

eaf2f7989749db5e501aca30608a6b65
SHA1

a7861528f97d2bffdbe7e7bff5dd4c38955061c8
SHA256

48c37b16cde06a12dfdd6ca97e02e1642c5cb10713dc80de97d755d1e9629eac
SHA512

b888d5e34a8b3aa78cae115be81a41271c5d1fa5a232d9d7ec8460f01ce81137cae4f0e8a51cb52548fe06951267e6665a6da1479140fd6b62dab0ef508c4a38
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTl806UrAZ+5OEDkHPSN9BbI:c+8X9G3vP3AMn6UrAYLDkHGBbI

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  48c37b16cde06a12dfdd6ca97e02e1642c5cb10713dc80de97d755d1e9629eac
- Size
  
  3.6MB
- MD5
  
  eaf2f7989749db5e501aca30608a6b65
- SHA1
  
  a7861528f97d2bffdbe7e7bff5dd4c38955061c8
- SHA256
  
  48c37b16cde06a12dfdd6ca97e02e1642c5cb10713dc80de97d755d1e9629eac
- SHA512
  
  b888d5e34a8b3aa78cae115be81a41271c5d1fa5a232d9d7ec8460f01ce81137cae4f0e8a51cb52548fe06951267e6665a6da1479140fd6b62dab0ef508c4a38
- SSDEEP
  
  49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTl806UrAZ+5OEDkHPSN9BbI:c+8X9G3vP3AMn6UrAYLDkHGBbI
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2