018b7609b6e87457e4f3ab133aa78809a6c31ea082bb8866d953303f589df10f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

018b7609b6e87457e4f3ab133aa78809a6c31ea082bb8866d953303f589df10f
Size

3.6MB
Sample

231122-j181zabg8t
MD5

7c463caffc3d3e0af9a0aa03c4708e1b
SHA1

d705bd62225088cea5209c1220551695360689cc
SHA256

018b7609b6e87457e4f3ab133aa78809a6c31ea082bb8866d953303f589df10f
SHA512

86c2ed8f6354ee7e8c6fa8d92c85162798b0d3277fbeecd81186ff7a62eca323a99b02329560781e536326d026261b0905a94b9fa2657c08c8403594d1e586db
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlof0g3c0c6nqq6gx72ju9qT:Q+8X9G3vP3AMqf08c6qq6gUu8T

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  018b7609b6e87457e4f3ab133aa78809a6c31ea082bb8866d953303f589df10f
- Size
  
  3.6MB
- MD5
  
  7c463caffc3d3e0af9a0aa03c4708e1b
- SHA1
  
  d705bd62225088cea5209c1220551695360689cc
- SHA256
  
  018b7609b6e87457e4f3ab133aa78809a6c31ea082bb8866d953303f589df10f
- SHA512
  
  86c2ed8f6354ee7e8c6fa8d92c85162798b0d3277fbeecd81186ff7a62eca323a99b02329560781e536326d026261b0905a94b9fa2657c08c8403594d1e586db
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlof0g3c0c6nqq6gx72ju9qT:Q+8X9G3vP3AMqf08c6qq6gUu8T
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2