Overview

overview

8

Static

static

usbcg2dkfw1116_5.exe

windows7-x64

8

usbcg2dkfw1116_5.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    usbcg2dkfw1116_5.exe

  • Size

    17.3MB

  • Sample

    220914-akhpeacfhj

  • MD5

    afdd1b88ac6cb2521b0e4183244f9316

  • SHA1

    7742aa8112c286264efb028ec480f9edc28742d3

  • SHA256

    93395f4daf71a7b7b1dd77a00f9790f486b92f26b3459ad85311f6ce2d25aea8

  • SHA512

    aeb91ba186ce453030788c55e8824399006f87ec7c3553713783c71b05d3ac6097af75eef15bc49bb4797397534c80c50abe17cb8df3dfa07e0d25f60996e18b

  • SSDEEP

    393216:WIMl4xh4RbXjBAbhU8N6itIy8PnMZ6ud4Cgub6NeUnSzxuKJ8PX/+9:fqNRPBAbNPanMZ6u4JekKCn+9

Score
8/10
discoveryexploit

Malware Config

Targets

    • Target

      usbcg2dkfw1116_5.exe

    • Size

      17.3MB

    • MD5

      afdd1b88ac6cb2521b0e4183244f9316

    • SHA1

      7742aa8112c286264efb028ec480f9edc28742d3

    • SHA256

      93395f4daf71a7b7b1dd77a00f9790f486b92f26b3459ad85311f6ce2d25aea8

    • SHA512

      aeb91ba186ce453030788c55e8824399006f87ec7c3553713783c71b05d3ac6097af75eef15bc49bb4797397534c80c50abe17cb8df3dfa07e0d25f60996e18b

    • SSDEEP

      393216:WIMl4xh4RbXjBAbhU8N6itIy8PnMZ6ud4Cgub6NeUnSzxuKJ8PX/+9:fqNRPBAbNPanMZ6u4JekKCn+9

    Score
    8/10
    discoveryexploit

    • Executes dropped EXE

    • Possible privilege escalation attempt

      exploit

    • Loads dropped DLL

    • Modifies file permissions

      discovery

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

1
T1222

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks