9b449046525ab636615d9f8c2fe6b7da915f935596f02af0c5daa9cefe3c9c2e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9b449046525ab636615d9f8c2fe6b7da915f935596f02af0c5daa9cefe3c9c2e
Size

3.2MB
Sample

231013-1b8gksbd41
MD5

64f147c8a4b243a0ed7c006129260968
SHA1

8be8e1f0b2293170fcf6410531a4a21c297b752c
SHA256

9b449046525ab636615d9f8c2fe6b7da915f935596f02af0c5daa9cefe3c9c2e
SHA512

0249fc0a30a1952abc7ad2dabd663469a5e74d8f39d17c0bf7190f402e5aa134e21ca27b031d04c2554b424c4fb9f2f47d4ef23be049605c978b47794a4fa02f
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlE0xzka5Ifmg4y9QqjZO:c+8X9G3vP3AMassmgkIZO

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  9b449046525ab636615d9f8c2fe6b7da915f935596f02af0c5daa9cefe3c9c2e
- Size
  
  3.2MB
- MD5
  
  64f147c8a4b243a0ed7c006129260968
- SHA1
  
  8be8e1f0b2293170fcf6410531a4a21c297b752c
- SHA256
  
  9b449046525ab636615d9f8c2fe6b7da915f935596f02af0c5daa9cefe3c9c2e
- SHA512
  
  0249fc0a30a1952abc7ad2dabd663469a5e74d8f39d17c0bf7190f402e5aa134e21ca27b031d04c2554b424c4fb9f2f47d4ef23be049605c978b47794a4fa02f
- SSDEEP
  
  49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTlE0xzka5Ifmg4y9QqjZO:c+8X9G3vP3AMassmgkIZO
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2