Overview

overview

8

Static

static

AccessData....1.exe

windows7-x64

8

AccessData....1.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    AccessData_FTK_Imager_4.7.1.exe

  • Size

    51.0MB

  • Sample

    230110-kbamjsfd74

  • MD5

    9b2aff0559976cf518cfc03b76498296

  • SHA1

    8cda871aaef4af47c9045716fd777d5f7df4bfa7

  • SHA256

    57020f3e585d0f2a7ee783054c50886db4c65af1bbbe5e12e114dbf674326184

  • SHA512

    63721410c56608ec998c2db85772a995ae09e971aa11ff3296af5d23538d7af317674866bc2dcaebe4994daa915176d16362db378db9232c54649a67c2a2939f

  • SSDEEP

    1572864:4qBBNBHkaP0aQs88ct1TQqqdd4O5hL8XV3e:4aUc89tWqi35h4A

Score
8/10

Malware Config

Targets

    • Target

      AccessData_FTK_Imager_4.7.1.exe

    • Size

      51.0MB

    • MD5

      9b2aff0559976cf518cfc03b76498296

    • SHA1

      8cda871aaef4af47c9045716fd777d5f7df4bfa7

    • SHA256

      57020f3e585d0f2a7ee783054c50886db4c65af1bbbe5e12e114dbf674326184

    • SHA512

      63721410c56608ec998c2db85772a995ae09e971aa11ff3296af5d23538d7af317674866bc2dcaebe4994daa915176d16362db378db9232c54649a67c2a2939f

    • SSDEEP

      1572864:4qBBNBHkaP0aQs88ct1TQqqdd4O5hL8XV3e:4aUc89tWqi35h4A

    Score
    8/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks