f9ca1112bae0acd8619cde11a7f7e368f4d80a3a88a5c0f171eda9880a8258c7 | Triage

Sharing

General

Target

46128025ffdcdf0850a37b18be501478
Size

2.0MB
Sample

240106-m7s5wagag2
MD5

46128025ffdcdf0850a37b18be501478
SHA1

8b6ae0fb464050bb41fa10da70614978edc89986
SHA256

f9ca1112bae0acd8619cde11a7f7e368f4d80a3a88a5c0f171eda9880a8258c7
SHA512

d5ce2a47b52d585e85a35f72a79f54880e85035bc1e2d273a54f898fb37852651d72454d206149837484196fd969a841b04bfac6609bfed6e779d15ee520c589
SSDEEP

24576:JMQRlg1flT/+WvWL0vbTP9zWm8st54GXFQRl:m4gnTpA0vbTP9zWmTtHF4

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  46128025ffdcdf0850a37b18be501478
- Size
  
  2.0MB
- MD5
  
  46128025ffdcdf0850a37b18be501478
- SHA1
  
  8b6ae0fb464050bb41fa10da70614978edc89986
- SHA256
  
  f9ca1112bae0acd8619cde11a7f7e368f4d80a3a88a5c0f171eda9880a8258c7
- SHA512
  
  d5ce2a47b52d585e85a35f72a79f54880e85035bc1e2d273a54f898fb37852651d72454d206149837484196fd969a841b04bfac6609bfed6e779d15ee520c589
- SSDEEP
  
  24576:JMQRlg1flT/+WvWL0vbTP9zWm8st54GXFQRl:m4gnTpA0vbTP9zWmTtHF4
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Replication Through Removable Media

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2