8fb453bf498acb05af9e0a442f26029cd6c5a3d68431fdff7fc385faf1541b96 | Triage

Sharing

General

Target

MEmu-setup-abroad-sdk.exe
Size

20.0MB
Sample

221123-sdnwysea9w
MD5

581da0f19ef8388a0ba331ce0a617aaf
SHA1

e050d686c3c5972aaf1a4fdec299e764ef9873eb
SHA256

8fb453bf498acb05af9e0a442f26029cd6c5a3d68431fdff7fc385faf1541b96
SHA512

091a019846f2bf431ba7231ebe711d856f0839527c5dd68d59fa91cf22ddfffc7e3ad395ab4bd8b0f9fb90721872c9e2cc4428cb5dc8dd7fd137ff8dc2bb0943
SSDEEP

393216:qpsmQyK0QtLJsv6tWKFdu9CnvUiOnKv647n+YlmYsp:qslbbDfvegmt

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  MEmu-setup-abroad-sdk.exe
- Size
  
  20.0MB
- MD5
  
  581da0f19ef8388a0ba331ce0a617aaf
- SHA1
  
  e050d686c3c5972aaf1a4fdec299e764ef9873eb
- SHA256
  
  8fb453bf498acb05af9e0a442f26029cd6c5a3d68431fdff7fc385faf1541b96
- SHA512
  
  091a019846f2bf431ba7231ebe711d856f0839527c5dd68d59fa91cf22ddfffc7e3ad395ab4bd8b0f9fb90721872c9e2cc4428cb5dc8dd7fd137ff8dc2bb0943
- SSDEEP
  
  393216:qpsmQyK0QtLJsv6tWKFdu9CnvUiOnKv647n+YlmYsp:qslbbDfvegmt
Score

8^/10

discovery
- Downloads MZ/PE file
- Loads dropped DLL
- Checks for any installed AV software in registry
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

Security Software Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2