Overview

overview

8

Static

static

1

acb3954b95...78.lnk

windows7-x64

8

acb3954b95...78.lnk

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    acb3954b95e3c897d5ac69a8cc09ed81aace7b3193aa637f5ceb2a4a23204078.lnk

  • Size

    1KB

  • Sample

    241121-pxc21swqfk

  • MD5

    1664d5f3dc065840b88ee13b4b929e16

  • SHA1

    016cd52337bbfb8d73d213509cbc3a1e6cfff65e

  • SHA256

    acb3954b95e3c897d5ac69a8cc09ed81aace7b3193aa637f5ceb2a4a23204078

  • SHA512

    b44af59c444dabcf56a24ef40e7e66ed6080d9ec4e9b3d4bd335137eda7c85365cb9741b41e7f5420a13ea1ad8728314f2812e0ff5e2ec602b4addd07ae39fc2

Score
8/10
persistence

Malware Config

Targets

    • Target

      acb3954b95e3c897d5ac69a8cc09ed81aace7b3193aa637f5ceb2a4a23204078.lnk

    • Size

      1KB

    • MD5

      1664d5f3dc065840b88ee13b4b929e16

    • SHA1

      016cd52337bbfb8d73d213509cbc3a1e6cfff65e

    • SHA256

      acb3954b95e3c897d5ac69a8cc09ed81aace7b3193aa637f5ceb2a4a23204078

    • SHA512

      b44af59c444dabcf56a24ef40e7e66ed6080d9ec4e9b3d4bd335137eda7c85365cb9741b41e7f5420a13ea1ad8728314f2812e0ff5e2ec602b4addd07ae39fc2

    Score
    8/10
    persistence

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks