deb57e18d47d2e17c559dd2e23b0e3fba2cead025376280d1e7a622162c0e45a | Triage

Sharing

General

Target

jdk-20_windows-x64_bin.exe
Size

160.0MB
Sample

230509-2sa33sad72
MD5

a94e0ed6c292e8b23655e0073af3b0b0
SHA1

41a5c27608137a292ca3d0ca26f512346ecb1ca2
SHA256

deb57e18d47d2e17c559dd2e23b0e3fba2cead025376280d1e7a622162c0e45a
SHA512

16dca126ce2b75e101d79b4d7a4360a3f52d170bbe5dde15d5104c17344d282e357834735016dff48d1ca6eddd32bc4c7860a1e3616a7808a6513824d3ed212c
SSDEEP

3145728:/1x1UomqdNhzKzH5m1z1eRTmOZg9hLHRIv2Wtew6zIAGVvZig+l3W302tPGF0B:9x1UCdNZKzk1z+yR9hLHRfA76zRIvZia

Score

8^/10

Malware Config

Targets

- Target
  
  jdk-20_windows-x64_bin.exe
- Size
  
  160.0MB
- MD5
  
  a94e0ed6c292e8b23655e0073af3b0b0
- SHA1
  
  41a5c27608137a292ca3d0ca26f512346ecb1ca2
- SHA256
  
  deb57e18d47d2e17c559dd2e23b0e3fba2cead025376280d1e7a622162c0e45a
- SHA512
  
  16dca126ce2b75e101d79b4d7a4360a3f52d170bbe5dde15d5104c17344d282e357834735016dff48d1ca6eddd32bc4c7860a1e3616a7808a6513824d3ed212c
- SSDEEP
  
  3145728:/1x1UomqdNhzKzH5m1z1eRTmOZg9hLHRIv2Wtew6zIAGVvZig+l3W302tPGF0B:9x1UCdNZKzk1z+yR9hLHRfA76zRIvZia
Score

8^/10
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2