Overview

overview

7

Static

static

1

rar_passwo....0.exe

windows7-x64

7

rar_passwo....0.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    rar_password_unlocker_trial-5.0.exe

  • Size

    12.7MB

  • Sample

    230328-z966qsfb5v

  • MD5

    115073414b19ae3258a166962e7603f3

  • SHA1

    5b299551153ea45f68899996d3cccce5cc7ce1c7

  • SHA256

    a45d5a7538790a3388e390118b4fa6f5a0ca3245fa64072f5807b303035d0ec9

  • SHA512

    86da788a8f15b017026a2a4a266f8f82d96c6e9845f32682014eea18dcef9851a3700f949e25bccd8ce35f26a48378f853d512d1bc966aa2301d4ca9864c5412

  • SSDEEP

    393216:5zmPcKtpFUOWdp5BprwNE2PvGbN+8N3cgQWO:5GPaOWdp5BgE2s+8N3VQ5

Score
7/10
discovery

Malware Config

Targets

    • Target

      rar_password_unlocker_trial-5.0.exe

    • Size

      12.7MB

    • MD5

      115073414b19ae3258a166962e7603f3

    • SHA1

      5b299551153ea45f68899996d3cccce5cc7ce1c7

    • SHA256

      a45d5a7538790a3388e390118b4fa6f5a0ca3245fa64072f5807b303035d0ec9

    • SHA512

      86da788a8f15b017026a2a4a266f8f82d96c6e9845f32682014eea18dcef9851a3700f949e25bccd8ce35f26a48378f853d512d1bc966aa2301d4ca9864c5412

    • SSDEEP

      393216:5zmPcKtpFUOWdp5BprwNE2PvGbN+8N3cgQWO:5GPaOWdp5BgE2s+8N3VQ5

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks