01dda6b6c94108759ed66cdfc91aa3c72fa038fb0acd3cbc9fdba0d293a5def2 | Triage

Sharing

General

Target

01dda6b6c94108759ed66cdfc91aa3c72fa038fb0acd3cbc9fdba0d293a5def2
Size

1.3MB
Sample

241121-jm84tazmez
MD5

48239bfd6b07f9a2d9412a1f3f2c76df
SHA1

b4d9968a0f99bcb6cc00eca368e46502b4c2d0d8
SHA256

01dda6b6c94108759ed66cdfc91aa3c72fa038fb0acd3cbc9fdba0d293a5def2
SHA512

4dc1b52b65e8e9d99192035c65c9248c42fda8d66aa1732d264bcbd6eecd80c239b4efda653d777d166b55b0cc797a2528bbd2ad8872d3724aac168e76e6e2a5
SSDEEP

24576:e2CU/OLOQC0tpqqodY1iMrvN/4rEWhhI3HCnajSkMUJtA:2Y/Qf8mNQ7+McMUJi

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  01dda6b6c94108759ed66cdfc91aa3c72fa038fb0acd3cbc9fdba0d293a5def2
- Size
  
  1.3MB
- MD5
  
  48239bfd6b07f9a2d9412a1f3f2c76df
- SHA1
  
  b4d9968a0f99bcb6cc00eca368e46502b4c2d0d8
- SHA256
  
  01dda6b6c94108759ed66cdfc91aa3c72fa038fb0acd3cbc9fdba0d293a5def2
- SHA512
  
  4dc1b52b65e8e9d99192035c65c9248c42fda8d66aa1732d264bcbd6eecd80c239b4efda653d777d166b55b0cc797a2528bbd2ad8872d3724aac168e76e6e2a5
- SSDEEP
  
  24576:e2CU/OLOQC0tpqqodY1iMrvN/4rEWhhI3HCnajSkMUJtA:2Y/Qf8mNQ7+McMUJi
Score

8^/10

persistence discovery
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence