2a65f26e3ce72191cfe37603b5c61ec5d0c5856e4830379c9e953c80fa1d2548 | Triage

Sharing

General

Target

2a65f26e3ce72191cfe37603b5c61ec5d0c5856e4830379c9e953c80fa1d2548
Size

3.0MB
Sample

231013-w4emrafb28
MD5

d170c9df30c589fb8ba6f5f321afa75f
SHA1

262410a51d67c1ba00fd93efab48f7d324c5f666
SHA256

2a65f26e3ce72191cfe37603b5c61ec5d0c5856e4830379c9e953c80fa1d2548
SHA512

3ab76cfe0c2e4532cdac24f2f9660ca4578db203e86a69fccaf2506b797a249e5e931b109c6fd2aee9c3242b79548ab5ab357bdb968096baf9d291eebd30750d
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTljRe8rZXW3W3:Q+8X9G3vP3AMV0QXW3W3

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2a65f26e3ce72191cfe37603b5c61ec5d0c5856e4830379c9e953c80fa1d2548
- Size
  
  3.0MB
- MD5
  
  d170c9df30c589fb8ba6f5f321afa75f
- SHA1
  
  262410a51d67c1ba00fd93efab48f7d324c5f666
- SHA256
  
  2a65f26e3ce72191cfe37603b5c61ec5d0c5856e4830379c9e953c80fa1d2548
- SHA512
  
  3ab76cfe0c2e4532cdac24f2f9660ca4578db203e86a69fccaf2506b797a249e5e931b109c6fd2aee9c3242b79548ab5ab357bdb968096baf9d291eebd30750d
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTljRe8rZXW3W3:Q+8X9G3vP3AMV0QXW3W3
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2