566f0200e8ecf75f9b39784b93efe92a6a826901cf1c1e8744266ca6030aacc7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3e4aff205b57e8d1bf579b16c8c398fa
Size

19KB
Sample

240102-a3wzrafgh6
MD5

3e4aff205b57e8d1bf579b16c8c398fa
SHA1

7bfbe5e9cb0ee269214c61586b626bb9421e52aa
SHA256

566f0200e8ecf75f9b39784b93efe92a6a826901cf1c1e8744266ca6030aacc7
SHA512

115f35ec70d8b222dded065ca9a5c7c32e1616fb9829dd03fb748560c17d6f0f3a937ef4fb54563d79c1b50f74d9cd296727d3543761a81d7b16209223c77975
SSDEEP

384:ZO17nDNnoc3eCWwCCbteJ1ImM4yZHhpqbV5EEeTtdNfR5AEAGA322wYfB:ZOtnpo4LWYMIT4xrQtdXFAGyDw

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  3e4aff205b57e8d1bf579b16c8c398fa
- Size
  
  19KB
- MD5
  
  3e4aff205b57e8d1bf579b16c8c398fa
- SHA1
  
  7bfbe5e9cb0ee269214c61586b626bb9421e52aa
- SHA256
  
  566f0200e8ecf75f9b39784b93efe92a6a826901cf1c1e8744266ca6030aacc7
- SHA512
  
  115f35ec70d8b222dded065ca9a5c7c32e1616fb9829dd03fb748560c17d6f0f3a937ef4fb54563d79c1b50f74d9cd296727d3543761a81d7b16209223c77975
- SSDEEP
  
  384:ZO17nDNnoc3eCWwCCbteJ1ImM4yZHhpqbV5EEeTtdNfR5AEAGA322wYfB:ZOtnpo4LWYMIT4xrQtdXFAGyDw
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2