8df643f330a2252edc73f3f3673ab4f8b76cdc57d244783ca9dda3874c3f388d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8df643f330a2252edc73f3f3673ab4f8b76cdc57d244783ca9dda3874c3f388d
Size

3.4MB
Sample

231122-j2yxdsbb48
MD5

445c5201f863e61575ca99588f6548a3
SHA1

6c864dc073c89efb990a5cefa21a4661e22f04e6
SHA256

8df643f330a2252edc73f3f3673ab4f8b76cdc57d244783ca9dda3874c3f388d
SHA512

51e461b8a617344dbc7d6b1454b5c78f7897f473171ae3557292aad3ef91a6e2364e106988efce7e1a9d2f27f8d42204643421adc576ffb7066838f79f888514
SSDEEP

49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlugQyQRE/NG/9QJuXDQh:Q+8X9G3vP3AMhpuShJYDA

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  8df643f330a2252edc73f3f3673ab4f8b76cdc57d244783ca9dda3874c3f388d
- Size
  
  3.4MB
- MD5
  
  445c5201f863e61575ca99588f6548a3
- SHA1
  
  6c864dc073c89efb990a5cefa21a4661e22f04e6
- SHA256
  
  8df643f330a2252edc73f3f3673ab4f8b76cdc57d244783ca9dda3874c3f388d
- SHA512
  
  51e461b8a617344dbc7d6b1454b5c78f7897f473171ae3557292aad3ef91a6e2364e106988efce7e1a9d2f27f8d42204643421adc576ffb7066838f79f888514
- SSDEEP
  
  49152:D7TvfU+8X9GrNOsva5RbKhF3ANkTTlugQyQRE/NG/9QJuXDQh:Q+8X9G3vP3AMhpuShJYDA
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2