4abe16f544023898b5f089d84999e71e39bba9efc6effff4d40d6456a5a251b5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4abe16f544023898b5f089d84999e71e39bba9efc6effff4d40d6456a5a251b5
Size

2.8MB
Sample

231016-gvz5rseb29
MD5

80d30f6db7b3e0ae9039dd947fbbed2d
SHA1

e2200f8ce6e470442f1de6014af8cd3951168da3
SHA256

4abe16f544023898b5f089d84999e71e39bba9efc6effff4d40d6456a5a251b5
SHA512

72a502e9e3f424713f8563ce1c6068d6850b5bac0e1e751f4cd5eca0fd70f7499024d1ccc358b0d9fc90e7a1f6cfe95ac564a88d8bccd267a7e8e7e9a814d505
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTl1k/h2OJEB3TBwub:c+8X9G3vP3AMs/h2OOlVwub

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  4abe16f544023898b5f089d84999e71e39bba9efc6effff4d40d6456a5a251b5
- Size
  
  2.8MB
- MD5
  
  80d30f6db7b3e0ae9039dd947fbbed2d
- SHA1
  
  e2200f8ce6e470442f1de6014af8cd3951168da3
- SHA256
  
  4abe16f544023898b5f089d84999e71e39bba9efc6effff4d40d6456a5a251b5
- SHA512
  
  72a502e9e3f424713f8563ce1c6068d6850b5bac0e1e751f4cd5eca0fd70f7499024d1ccc358b0d9fc90e7a1f6cfe95ac564a88d8bccd267a7e8e7e9a814d505
- SSDEEP
  
  49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTl1k/h2OJEB3TBwub:c+8X9G3vP3AMs/h2OOlVwub
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2