Overview

overview

6

Static

static

WindowsDef...rd.wim

windows7-x64

3

WindowsDef...rd.wim

windows10-1703-x64

6

WindowsDef...rd.wim

windows10-2004-x64

3

WindowsDef...rd.wim

android-10-x64

WindowsDef...rd.wim

android-11-x64

WindowsDef...rd.wim

android-9-x86

WindowsDef...rd.wim

macos-10.15-amd64

1

WindowsDef...rd.wim

debian-9-armhf

WindowsDef...rd.wim

debian-9-mips

WindowsDef...rd.wim

debian-9-mipsel

WindowsDef...rd.wim

ubuntu-18.04-amd64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    WindowsDefenderApplicationGuard.wim

  • Size

    30.5MB

  • Sample

    221224-hvmp4shf85

  • MD5

    e069ad898b074b8cf98256516aed064c

  • SHA1

    a040057d2edf90ebb14b90a52b92eeb5b5d1faa1

  • SHA256

    d215f9c3834c64134eb60d6b64ae143409e76570d5d9a4f3488a1e8aba9ab8b2

  • SHA512

    e86b57c2a62046e46b8b5edebdd59a4f39d4a198cf83af8086bbfb559b22ae8b586833077f6092a94627ed9a32c9fcb413106f63a160290900d725ed1535132d

  • SSDEEP

    786432:M8mV0NuwtR/8+GDp9ULmz1MXxc9cy8avU5FVYiqV7pbM:M8mV0kwtR61yLmiBc9ia82I

Score
6/10
androidlinuxmacos

Malware Config

Targets

    • Target

      WindowsDefenderApplicationGuard.wim

    • Size

      30.5MB

    • MD5

      e069ad898b074b8cf98256516aed064c

    • SHA1

      a040057d2edf90ebb14b90a52b92eeb5b5d1faa1

    • SHA256

      d215f9c3834c64134eb60d6b64ae143409e76570d5d9a4f3488a1e8aba9ab8b2

    • SHA512

      e86b57c2a62046e46b8b5edebdd59a4f39d4a198cf83af8086bbfb559b22ae8b586833077f6092a94627ed9a32c9fcb413106f63a160290900d725ed1535132d

    • SSDEEP

      786432:M8mV0NuwtR/8+GDp9ULmz1MXxc9cy8avU5FVYiqV7pbM:M8mV0kwtR61yLmiBc9ia82I

    Score
    6/10

    • Drops desktop.ini file(s)

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral10behavioral11behavioral2behavioral3behavioral4behavioral5behavioral6behavioral7behavioral8behavioral9

MITRE ATT&CK Enterprise v6

Tasks