15baaf79938173bd6505ba2bfe187efe5c8eac78406bc29907f10af2789c3df6 | Triage

Sharing

General

Target

105241da1a54da90ace9ad228d44c901
Size

1.8MB
Sample

231230-ggamysabc7
MD5

105241da1a54da90ace9ad228d44c901
SHA1

4dc7f9713881c445a47b9dcd73abd8896ac46ae3
SHA256

15baaf79938173bd6505ba2bfe187efe5c8eac78406bc29907f10af2789c3df6
SHA512

bb7ef023a2650e2fd107d3a75b8ad0c9ea5f97ffaf83de5a60d1da66de9dbdd775f73883b41b1f9e0590af830cf2a2098b7372bdc6193ce0cc41fa62186554e3
SSDEEP

24576:mMjhs2I21YwPd1Y+rFzn5D8YgJ6xORZ6rAiv1Zr+P1M81bDf4bKVzox1/OMAKfKw:llBPd1Y+B5/gJ6a6TnGqKVG1/OtAK6Jl

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  105241da1a54da90ace9ad228d44c901
- Size
  
  1.8MB
- MD5
  
  105241da1a54da90ace9ad228d44c901
- SHA1
  
  4dc7f9713881c445a47b9dcd73abd8896ac46ae3
- SHA256
  
  15baaf79938173bd6505ba2bfe187efe5c8eac78406bc29907f10af2789c3df6
- SHA512
  
  bb7ef023a2650e2fd107d3a75b8ad0c9ea5f97ffaf83de5a60d1da66de9dbdd775f73883b41b1f9e0590af830cf2a2098b7372bdc6193ce0cc41fa62186554e3
- SSDEEP
  
  24576:mMjhs2I21YwPd1Y+rFzn5D8YgJ6xORZ6rAiv1Zr+P1M81bDf4bKVzox1/OMAKfKw:llBPd1Y+B5/gJ6a6TnGqKVG1/OtAK6Jl
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2