a3d7e4a731156f96f3023ee79f7d0451a50bb3cc2b006c244a7f4688ebac5daf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a3d7e4a731156f96f3023ee79f7d0451a50bb3cc2b006c244a7f4688ebac5daf
Size

2.9MB
Sample

231103-xpwhdsba44
MD5

071f90d90917b4f5722fd4bc44e1d1ce
SHA1

5377856b8d18befce42057d1721db9d14ab6b67f
SHA256

a3d7e4a731156f96f3023ee79f7d0451a50bb3cc2b006c244a7f4688ebac5daf
SHA512

71285ea95c532701a1c6f77d6baf986155a753f903f027f1d16aae97003bfb4e55e5533c4567be18eb28ac8711f081a16a065d6c41fe3b17815b3e48ad24b1fd
SSDEEP

49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTllG0QYwlxPrkBdWn:c+8X9G3vP3AM/G0lwDPrxn

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a3d7e4a731156f96f3023ee79f7d0451a50bb3cc2b006c244a7f4688ebac5daf
- Size
  
  2.9MB
- MD5
  
  071f90d90917b4f5722fd4bc44e1d1ce
- SHA1
  
  5377856b8d18befce42057d1721db9d14ab6b67f
- SHA256
  
  a3d7e4a731156f96f3023ee79f7d0451a50bb3cc2b006c244a7f4688ebac5daf
- SHA512
  
  71285ea95c532701a1c6f77d6baf986155a753f903f027f1d16aae97003bfb4e55e5533c4567be18eb28ac8711f081a16a065d6c41fe3b17815b3e48ad24b1fd
- SSDEEP
  
  49152:H7TvfU+8X9GrNOsva5RbKhF3ANkTTllG0QYwlxPrkBdWn:c+8X9G3vP3AM/G0lwDPrxn
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2