acda6126a7f5a0ef7fe6a73a8e3587b3d7969e4b28b7c6f3313bf167196f961f | Triage

Sharing

General

Target

097650223b3997f98efcf4c9a5096a5b
Size

709KB
Sample

231230-bfannsefhp
MD5

097650223b3997f98efcf4c9a5096a5b
SHA1

0a10a2ccdb8b5f6bc62273939cd01eecc7d6a7c7
SHA256

acda6126a7f5a0ef7fe6a73a8e3587b3d7969e4b28b7c6f3313bf167196f961f
SHA512

e176e43835e57a1d431d43b83f6c9d1ae084d3cae9733e9f8bdcff38b0964970df7ba35e40918cf561b264e1225d1327f20f0fbba76bc663b822ed44e66692d3
SSDEEP

12288:hjJ7OACby3cWU5+hJawmt4Vf7WOQT22/ARLF3Z4mxxN+jAh/078w5jAlCi7:T7OAC2sXMrvv54B/AFQmXN+ss7/lA57

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  097650223b3997f98efcf4c9a5096a5b
- Size
  
  709KB
- MD5
  
  097650223b3997f98efcf4c9a5096a5b
- SHA1
  
  0a10a2ccdb8b5f6bc62273939cd01eecc7d6a7c7
- SHA256
  
  acda6126a7f5a0ef7fe6a73a8e3587b3d7969e4b28b7c6f3313bf167196f961f
- SHA512
  
  e176e43835e57a1d431d43b83f6c9d1ae084d3cae9733e9f8bdcff38b0964970df7ba35e40918cf561b264e1225d1327f20f0fbba76bc663b822ed44e66692d3
- SSDEEP
  
  12288:hjJ7OACby3cWU5+hJawmt4Vf7WOQT22/ARLF3Z4mxxN+jAh/078w5jAlCi7:T7OAC2sXMrvv54B/AFQmXN+ss7/lA57
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2