d6bb1b2957325d677a9b7c6acd0bb61c5e841817706a45159482b9ad2585012a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d6bb1b2957325d677a9b7c6acd0bb61c5e841817706a45159482b9ad2585012a
Size

3.5MB
Sample

231116-2rs79scc6t
MD5

c00978c434867cbee188b83513381ec9
SHA1

8cebf4b5b5467006d8d2762aefabe34df1af14c6
SHA256

d6bb1b2957325d677a9b7c6acd0bb61c5e841817706a45159482b9ad2585012a
SHA512

4c5f47d85f9856cb5b4e40f5603c4a3d76a694ae29243e143d36d1048f490adaf0aa1caee6c18672ffa5fafaaf14b303c5a4c7e5eaf63c021906f21cb73471ba
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTl0rX54a2YDWcI/+iXx:Q+8X9G3vP3AMCf2YDWchih

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  d6bb1b2957325d677a9b7c6acd0bb61c5e841817706a45159482b9ad2585012a
- Size
  
  3.5MB
- MD5
  
  c00978c434867cbee188b83513381ec9
- SHA1
  
  8cebf4b5b5467006d8d2762aefabe34df1af14c6
- SHA256
  
  d6bb1b2957325d677a9b7c6acd0bb61c5e841817706a45159482b9ad2585012a
- SHA512
  
  4c5f47d85f9856cb5b4e40f5603c4a3d76a694ae29243e143d36d1048f490adaf0aa1caee6c18672ffa5fafaaf14b303c5a4c7e5eaf63c021906f21cb73471ba
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTl0rX54a2YDWcI/+iXx:Q+8X9G3vP3AMCf2YDWchih
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2