cd08c550a63835b1b99b89518cdf6a30600b5c8f6d0f1fea8b35b2480dd53863 | Triage

Resubmissions

13/10/2023, 13:01

231013-p9gkzahh3z 3

13/10/2023, 12:01

231013-n6wp2sbb42 8

Sharing

Copy URL Twitter E-mail

General

Target

MDE_File_Sample_19a9ed41a69c74f130f53572aa1b07b1fa35d93a408dcf9d3f16f0fd72dd1e69.zip
Size

671KB
Sample

231013-n6wp2sbb42
MD5

6a2ce75f3dc0a77ec0a7f60c3ae51cff
SHA1

c00995babc46e131482f187eba189c0397ab1c77
SHA256

cd08c550a63835b1b99b89518cdf6a30600b5c8f6d0f1fea8b35b2480dd53863
SHA512

b67e6f7bbbcde99871ee4d99dc227cf2010171db82140e7311a641ea890ed65a0d12434d3565d05829351adb89660ee4ea93f9b0af4e98f0137805a81db111e1
SSDEEP

12288:CPLH9skxHVomsZ4atkvoJeo7m+UgSAfHdvYbYD5o9rOLmE0U8:Ud3xHVomsZ4KeZRgdfHdx5o8mE0U8

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  Update.exe
- Size
  
  1.7MB
- MD5
  
  4a5dbd3d6263eca75561a21b98aa4353
- SHA1
  
  9308061daf870e2c3b002c5b5ba81556c6e03873
- SHA256
  
  19a9ed41a69c74f130f53572aa1b07b1fa35d93a408dcf9d3f16f0fd72dd1e69
- SHA512
  
  1741d133badccedeedc68079e1f6dcaf116bad58b85292031da2759ca0648416054d5806edcbf0910a276a95a76c4b21d2465dd1d994a068a1db5ee47632bd11
- SSDEEP
  
  24576:nh2mtSvdt2h7tDo4IFOtKhuqhju3hUjZtUagcR:nwlr2ptD5uuqY3hE
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1