b0ab7326d8aa8aaaeffa21e2fc16ff9e78e8a36dd6282bb7dd36b70958b16b1a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9c4676021b4a7cc86776c73b9eb2d0d6
Size

425KB
Sample

240214-wcq7gahb8z
MD5

9c4676021b4a7cc86776c73b9eb2d0d6
SHA1

aa9e342a0a8d52d03b646148e9944fb2c0a5ae5d
SHA256

b0ab7326d8aa8aaaeffa21e2fc16ff9e78e8a36dd6282bb7dd36b70958b16b1a
SHA512

cd52d06d135b748febfeed0b989c4d50d091528c56ba3a86741471cfb7375e7cc75a5970b5f93a60c70864e21341b5b1e4a43515808f25a03694580187db0981
SSDEEP

6144:6DZj1y/0Ulc/2TQ/6cPGJ+xe/X4bYvAt6X6N3mB12VYh4xITnyQ+CaEk2vIGMFZz:61j1I0UtQ/bPTv6XO3Qvh4x0khGkSm

Score

7^/10

Malware Config

Targets

- Target
  
  9c4676021b4a7cc86776c73b9eb2d0d6
- Size
  
  425KB
- MD5
  
  9c4676021b4a7cc86776c73b9eb2d0d6
- SHA1
  
  aa9e342a0a8d52d03b646148e9944fb2c0a5ae5d
- SHA256
  
  b0ab7326d8aa8aaaeffa21e2fc16ff9e78e8a36dd6282bb7dd36b70958b16b1a
- SHA512
  
  cd52d06d135b748febfeed0b989c4d50d091528c56ba3a86741471cfb7375e7cc75a5970b5f93a60c70864e21341b5b1e4a43515808f25a03694580187db0981
- SSDEEP
  
  6144:6DZj1y/0Ulc/2TQ/6cPGJ+xe/X4bYvAt6X6N3mB12VYh4xITnyQ+CaEk2vIGMFZz:61j1I0UtQ/bPTv6XO3Qvh4x0khGkSm
Score

7^/10
- Drops startup file
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Replication Through Removable Media

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

Lateral Movement

Replication Through Removable Media

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2