98ecb0a9c0a4703d986cf17e467fc94dfdec2c20744fb3b6c4d4b0e75128a7c0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

98ecb0a9c0a4703d986cf17e467fc94dfdec2c20744fb3b6c4d4b0e75128a7c0
Size

3.3MB
Sample

231016-hzsrxsed67
MD5

30540cffd4c602fddb15e8a174bdbe0d
SHA1

71f6d49e8f8e2c868ddfb6b8abadfc92732d80d6
SHA256

98ecb0a9c0a4703d986cf17e467fc94dfdec2c20744fb3b6c4d4b0e75128a7c0
SHA512

490ca3c6b4909dd580fbb3eed7172bc1a891e0bab9675d71c21461af2882976475bd60185f4850d0a615041a0c3e99aba7dc5ebb716c46f3123ee1327126fb7d
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlvuhSelw7OipUcrk8VU:Q+8X9G3vP3AMohSd7OiJk8VU

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  98ecb0a9c0a4703d986cf17e467fc94dfdec2c20744fb3b6c4d4b0e75128a7c0
- Size
  
  3.3MB
- MD5
  
  30540cffd4c602fddb15e8a174bdbe0d
- SHA1
  
  71f6d49e8f8e2c868ddfb6b8abadfc92732d80d6
- SHA256
  
  98ecb0a9c0a4703d986cf17e467fc94dfdec2c20744fb3b6c4d4b0e75128a7c0
- SHA512
  
  490ca3c6b4909dd580fbb3eed7172bc1a891e0bab9675d71c21461af2882976475bd60185f4850d0a615041a0c3e99aba7dc5ebb716c46f3123ee1327126fb7d
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlvuhSelw7OipUcrk8VU:Q+8X9G3vP3AMohSd7OiJk8VU
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2