dfddb33ec55f3e64b13643bf74741758b59b6e35bc1e6ffe8278d3281f8e8851 | Triage

Sharing

General

Target

Powder_2022.06.29_20.53.mp4
Size

5.9MB
Sample

240420-wg6gysee4y
MD5

1f11edc0b55112a4964ac2be6e686963
SHA1

60f11ca83d37bf06672fabf540703ec20eb6d9c3
SHA256

dfddb33ec55f3e64b13643bf74741758b59b6e35bc1e6ffe8278d3281f8e8851
SHA512

cad434f9d6a697de7e42b3837f8b6cd571eaeffca1b0e90d1022d53f9ab369f34ddee50f4943f586dacb94f007442a1be98b592f390f77502c6929773f6db592
SSDEEP

98304:Gd1RozaCjH4OTYODuH1QLqFbFszoDtstM0kCsBYoc/EG8lB45Nk39qnZIB0RL7i6:KEYGk1xF7tstM0kCsBYoc/b8liqqv29o

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  Powder_2022.06.29_20.53.mp4
- Size
  
  5.9MB
- MD5
  
  1f11edc0b55112a4964ac2be6e686963
- SHA1
  
  60f11ca83d37bf06672fabf540703ec20eb6d9c3
- SHA256
  
  dfddb33ec55f3e64b13643bf74741758b59b6e35bc1e6ffe8278d3281f8e8851
- SHA512
  
  cad434f9d6a697de7e42b3837f8b6cd571eaeffca1b0e90d1022d53f9ab369f34ddee50f4943f586dacb94f007442a1be98b592f390f77502c6929773f6db592
- SSDEEP
  
  98304:Gd1RozaCjH4OTYODuH1QLqFbFszoDtstM0kCsBYoc/EG8lB45Nk39qnZIB0RL7i6:KEYGk1xF7tstM0kCsBYoc/b8liqqv29o
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Drops desktop.ini file(s)
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1