7ab5e5fc448bae685606379dc8bb15a63d42683fd81ad118bc5cc40248849a9f | Triage

Submit
Reports

Overview

overview

8

Static

static

AnyDesk (1).exe

windows10-1703-x64

8

Sharing

General

Target

AnyDesk (1).exe
Size

3.8MB
Sample

221005-z4s2xsfhgl
MD5

3e0abb8a339194027c3e5d8f75dd568d
SHA1

f49baeea7d2a1c467a6505f27a0124b45d26f61f
SHA256

7ab5e5fc448bae685606379dc8bb15a63d42683fd81ad118bc5cc40248849a9f
SHA512

f2bce29e4acd6e3027a30d386a74879ebabb328803e84a2df6aff9ec54933ce7c111b8b447325c37ae3f36e236c573fe4a47a67bfebb3f0d3116b6e21a926a61
SSDEEP

49152:SDvwCpukOImpN6XoNU9Ckh3vcAWfSHo6wgXeSdaEo8qgVX6pkmxEqpRMo2Q0X299:S8VBIMeoNLC+gwQPNo8qgECepxdYiW9c

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

AnyDesk (1).exe

Resource

win10-20220812-en

windows10-1703-x64

17 signatures

1800 seconds

Malware Config

Targets

- Target
  
  AnyDesk (1).exe
- Size
  
  3.8MB
- MD5
  
  3e0abb8a339194027c3e5d8f75dd568d
- SHA1
  
  f49baeea7d2a1c467a6505f27a0124b45d26f61f
- SHA256
  
  7ab5e5fc448bae685606379dc8bb15a63d42683fd81ad118bc5cc40248849a9f
- SHA512
  
  f2bce29e4acd6e3027a30d386a74879ebabb328803e84a2df6aff9ec54933ce7c111b8b447325c37ae3f36e236c573fe4a47a67bfebb3f0d3116b6e21a926a61
- SSDEEP
  
  49152:SDvwCpukOImpN6XoNU9Ckh3vcAWfSHo6wgXeSdaEo8qgVX6pkmxEqpRMo2Q0X299:S8VBIMeoNLC+gwQPNo8qgECepxdYiW9c
Score

8^/10
- Downloads MZ/PE file
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy