b00206564060bd40748ea7094b1b3f0ec3b2dfca6a0bd8ea46eb189c59429eb7 | Triage

Resubmissions

24/06/2024, 02:41

240624-c6rwbavglc 1

24/06/2024, 02:39

240624-c5bspsyepr 8

Sharing

General

Target

audio-editor-output_3_1.mp3
Size

910KB
Sample

240624-c5bspsyepr
MD5

97ff109c1cd624d64bc8b475f3d20e3a
SHA1

91f0e37d3d18d05857233a0b267b80391293fc1a
SHA256

b00206564060bd40748ea7094b1b3f0ec3b2dfca6a0bd8ea46eb189c59429eb7
SHA512

0bc46e398c14a838cf8d2e24d5dc3c47c9bc0db5587b6d0f6abe1b06bc8d2cfa5c454bef03ac1fabfcf58498bf9eccc655f849a390f129fdffc563405174edf5
SSDEEP

12288:XK9DH8yWU3ACs77fgAwGcgXl7Qgb45gv+BUG9yWwOBXZC9pbYe97Hjr9zvwETRWF:2cyNQ9P2kbbGBUYzwnTZ71z9cQ0AZxW

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  audio-editor-output_3_1.mp3
- Size
  
  910KB
- MD5
  
  97ff109c1cd624d64bc8b475f3d20e3a
- SHA1
  
  91f0e37d3d18d05857233a0b267b80391293fc1a
- SHA256
  
  b00206564060bd40748ea7094b1b3f0ec3b2dfca6a0bd8ea46eb189c59429eb7
- SHA512
  
  0bc46e398c14a838cf8d2e24d5dc3c47c9bc0db5587b6d0f6abe1b06bc8d2cfa5c454bef03ac1fabfcf58498bf9eccc655f849a390f129fdffc563405174edf5
- SSDEEP
  
  12288:XK9DH8yWU3ACs77fgAwGcgXl7Qgb45gv+BUG9yWwOBXZC9pbYe97Hjr9zvwETRWF:2cyNQ9P2kbbGBUYzwnTZ71z9cQ0AZxW
Score

8^/10

persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Drops desktop.ini file(s)
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1