17760fea6c62e875d3850c5dbdbfdacb0a6c215a8c932f853b2f32a51f97343a | Triage

Sharing

General

Target

1.tct.txt
Size

91B
Sample

240714-p8metstdrb
MD5

0744aa89b64eb1ef3caf58840230111a
SHA1

f6ea986ef667575b7ef76e4fa3aa4b67bbd1b90c
SHA256

17760fea6c62e875d3850c5dbdbfdacb0a6c215a8c932f853b2f32a51f97343a
SHA512

98d4460c7dea0f22f14350864e668ef7ad9cf29a4ebb089c4b68116821f8ccd53ed488796c325eebbd8a72a14255fe84d8c55e9b8d6f2c68113e8c711de662b7

Score

8^/10

Malware Config

Targets

- Target
  
  1.tct.txt
- Size
  
  91B
- MD5
  
  0744aa89b64eb1ef3caf58840230111a
- SHA1
  
  f6ea986ef667575b7ef76e4fa3aa4b67bbd1b90c
- SHA256
  
  17760fea6c62e875d3850c5dbdbfdacb0a6c215a8c932f853b2f32a51f97343a
- SHA512
  
  98d4460c7dea0f22f14350864e668ef7ad9cf29a4ebb089c4b68116821f8ccd53ed488796c325eebbd8a72a14255fe84d8c55e9b8d6f2c68113e8c711de662b7
Score

8^/10
- Modifies RDP port number used by Windows
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Remote Services

Remote Desktop Protocol

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1