52a3ebb031951a47f40d26ecd19be04bd2eace99488a82b7069bf003f116ee25 | Triage

Sharing

General

Target

9a1441d5e7542f3f09bea620dee9a781
Size

24KB
Sample

240213-2e69csbh87
MD5

9a1441d5e7542f3f09bea620dee9a781
SHA1

99026c3d56b8e22299bbfe2721eab61f9ac3a692
SHA256

52a3ebb031951a47f40d26ecd19be04bd2eace99488a82b7069bf003f116ee25
SHA512

bf937b9e2b6575c81b5db0895ec2ac0be87450b0566433139ac72fd48578346d8a0476b46ed1a39ada37dd10d0315571bae99e7b1d4d0e9e01471b5a459d6bdb
SSDEEP

384:ZCIAm1aApMC7aHeYZf4km5StBuBoE1mCWN0km5S4:ZL1dJ7KeYZwkm5SjYo2mCWN0km5S4

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  9a1441d5e7542f3f09bea620dee9a781
- Size
  
  24KB
- MD5
  
  9a1441d5e7542f3f09bea620dee9a781
- SHA1
  
  99026c3d56b8e22299bbfe2721eab61f9ac3a692
- SHA256
  
  52a3ebb031951a47f40d26ecd19be04bd2eace99488a82b7069bf003f116ee25
- SHA512
  
  bf937b9e2b6575c81b5db0895ec2ac0be87450b0566433139ac72fd48578346d8a0476b46ed1a39ada37dd10d0315571bae99e7b1d4d0e9e01471b5a459d6bdb
- SSDEEP
  
  384:ZCIAm1aApMC7aHeYZf4km5StBuBoE1mCWN0km5S4:ZL1dJ7KeYZwkm5SjYo2mCWN0km5S4
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2