69cb80484319fb408716849d35e48ec3fb246a2a52645d3c49e3297759c14ea7 | Triage

Sharing

General

Target

c137c4a4c113ab23bf610a2ad4d2f5cc738948602638ccb7313b1bf331fff741.exe.zip
Size

11.7MB
Sample

231231-bn4xgschhm
MD5

53913ffd06d079f8cd9f7924eb27dae8
SHA1

a5e895ba4e81e673aab36798c3a427a62cbffc97
SHA256

69cb80484319fb408716849d35e48ec3fb246a2a52645d3c49e3297759c14ea7
SHA512

03e32fef0739fa55ad0521baf7efc8b3e157d60608fd7e26f7cc69227fc9e5f7cbb96b11fd573b677fd960e56d49f674ccd74a60a0c2ecc32e85ec5d060f5881
SSDEEP

196608:YkNvmvkRzeOwNDwkTGbxz87eUlKZCwIlsPM3wZ8WyR/dWbTC1W+wRHdsdq:1qkheXNDJ2Ye2KZCwIsPMREJHdsdq

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  c137c4a4c113ab23bf610a2ad4d2f5cc738948602638ccb7313b1bf331fff741.exe
- Size
  
  11.7MB
- MD5
  
  855fea526f0bb5ef1f043a3e63d70b8f
- SHA1
  
  f62b22214d1cdcd97c9284ef8aaba203707aa976
- SHA256
  
  c137c4a4c113ab23bf610a2ad4d2f5cc738948602638ccb7313b1bf331fff741
- SHA512
  
  9806af6623eda6df15afa8b616240075c6400e46c44d681a97b0aacbc1a852179166003d6fcf39bc0fdda2ff140eabb11f94839db518ade008b61a41ef6d07e6
- SSDEEP
  
  196608:EAPGOkvo7CA8wikC4DddU1KTsUQEZ4O/6rJpqjUEBzrWdFwE0QbmO:EAEvoOA8xIddU0TsXESO/6rJKUmMFRxf
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2