2d56af34d26bee94fd603a8936d996670c9073c87a12f421e486946938b2c106 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c50e023a70ce3e815fa3dafec03ca76
Size

10KB
Sample

231231-hnlt8sadcq
MD5

2c50e023a70ce3e815fa3dafec03ca76
SHA1

f36008f81d8a8ac4882fc6655fe9d509f1554e94
SHA256

2d56af34d26bee94fd603a8936d996670c9073c87a12f421e486946938b2c106
SHA512

9468a3a2bfd1a02988e1dfeb85e409dd81f520bc8b44f69fda0fc299eb2e3466d0bfc952173bae05742c6c04fc912a611e81c62f08b5e6dc59bc4ee8baebf79f
SSDEEP

192:fTBgqPYKAo2KF1lcCDZDp1ChDd3xZp0TUMAMKwkHR4p2KNGrUhU/yTDl:+AAo2o1ljD5a/zp0wMRTp2KNGgGs

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2c50e023a70ce3e815fa3dafec03ca76
- Size
  
  10KB
- MD5
  
  2c50e023a70ce3e815fa3dafec03ca76
- SHA1
  
  f36008f81d8a8ac4882fc6655fe9d509f1554e94
- SHA256
  
  2d56af34d26bee94fd603a8936d996670c9073c87a12f421e486946938b2c106
- SHA512
  
  9468a3a2bfd1a02988e1dfeb85e409dd81f520bc8b44f69fda0fc299eb2e3466d0bfc952173bae05742c6c04fc912a611e81c62f08b5e6dc59bc4ee8baebf79f
- SSDEEP
  
  192:fTBgqPYKAo2KF1lcCDZDp1ChDd3xZp0TUMAMKwkHR4p2KNGrUhU/yTDl:+AAo2o1ljD5a/zp0wMRTp2KNGgGs
Score

8^/10

persistence
- Drops file in Drivers directory
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2