ec6db6613575c19945f4e1ff6d90ecfbb1ab34cbdd30c2d429d86fd132bd557a | Triage

Sharing

General

Target

280841448a492e94b1c01f7505d163de
Size

649KB
Sample

231231-e1b9saagem
MD5

280841448a492e94b1c01f7505d163de
SHA1

1a468c2cba5ceef684ea4f9bdbc1682a5124370b
SHA256

ec6db6613575c19945f4e1ff6d90ecfbb1ab34cbdd30c2d429d86fd132bd557a
SHA512

81d85f6b7fdbce73e22212d84d5eb47aefd47b52c94d4090d365e9f8eb5b7a00f2b833f0f23606bc150d700d19455b9cbddc23a0d802d203912afc904a3e220c
SSDEEP

12288:FHyhPBDgO6dsx4tSZvqT4OWADF3Z4mxxfDqVTVOCZvOf:FHyngO4tSZvq1QmXeVTz8f

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  280841448a492e94b1c01f7505d163de
- Size
  
  649KB
- MD5
  
  280841448a492e94b1c01f7505d163de
- SHA1
  
  1a468c2cba5ceef684ea4f9bdbc1682a5124370b
- SHA256
  
  ec6db6613575c19945f4e1ff6d90ecfbb1ab34cbdd30c2d429d86fd132bd557a
- SHA512
  
  81d85f6b7fdbce73e22212d84d5eb47aefd47b52c94d4090d365e9f8eb5b7a00f2b833f0f23606bc150d700d19455b9cbddc23a0d802d203912afc904a3e220c
- SSDEEP
  
  12288:FHyhPBDgO6dsx4tSZvqT4OWADF3Z4mxxfDqVTVOCZvOf:FHyngO4tSZvq1QmXeVTz8f
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2