df18534a130deff36e77c4df448fb0b37ca71c575a438cec414be6cc9be549fc | Triage

Sharing

General

Target

df18534a130deff36e77c4df448fb0b37ca71c575a438cec414be6cc9be549fc
Size

3.6MB
Sample

231012-xkb8yshc31
MD5

bed753d061c86609225240d8c1545e3c
SHA1

2fa84a9b947d1ced3bf05be6dc0ff7b75d2f88c5
SHA256

df18534a130deff36e77c4df448fb0b37ca71c575a438cec414be6cc9be549fc
SHA512

ecea963bbfea47fc3a85d30263447b4b3c1129228f8c0860bd562e56fda9d76b4522560136767287cd0910d3cea5f5a70af4f4e67f83b74ff27967aa7fd342c0
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTl91xlZUtsmvgDUnpyeGMtWVaqvk:Q+8X9G3vP3AMhZzDEyTTaok

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  df18534a130deff36e77c4df448fb0b37ca71c575a438cec414be6cc9be549fc
- Size
  
  3.6MB
- MD5
  
  bed753d061c86609225240d8c1545e3c
- SHA1
  
  2fa84a9b947d1ced3bf05be6dc0ff7b75d2f88c5
- SHA256
  
  df18534a130deff36e77c4df448fb0b37ca71c575a438cec414be6cc9be549fc
- SHA512
  
  ecea963bbfea47fc3a85d30263447b4b3c1129228f8c0860bd562e56fda9d76b4522560136767287cd0910d3cea5f5a70af4f4e67f83b74ff27967aa7fd342c0
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTl91xlZUtsmvgDUnpyeGMtWVaqvk:Q+8X9G3vP3AMhZzDEyTTaok
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2