General
-
Target
MDE_File_Sample_1556232c5b6a998a4765a8f53d48a059cd617c59.zip
-
Size
19.0MB
-
Sample
230626-dj287sgh6w
-
MD5
fd8c5861a2450c7c06336ab01868c4ba
-
SHA1
2c1280e15565f4992833be2ba7850c30648e16b9
-
SHA256
06a9d571016c8cd59e297ad1f6aec40a2a90c92d448ec61340e9598360ef74e2
-
SHA512
d56396ec459c6918d230c56165d8e576cacde3eac6b4b009ba9af51f83ee1e58500aa10863349ea969e6e301d8d5c51eb89f0d6c33a51965f605f361f0b6e9dc
-
SSDEEP
393216:RQZLrZlzpWZLoXrkzdiHKqmo11tyoZJhhr5om9lcOyqY8ZHUaau9:RQZLFlcZcidKmoftrzN9lmqYSDr
Static task
static1
Behavioral task
behavioral1
Sample
Advanced_IP_Scanner_2.5.3850.exe
Resource
win10-20230621-en
Malware Config
Targets
-
-
Target
Advanced_IP_Scanner_2.5.3850.exe
-
Size
19.4MB
-
MD5
52e666a32d0847b416b66ad9aa98bbed
-
SHA1
1556232c5b6a998a4765a8f53d48a059cd617c59
-
SHA256
87bfb05057f215659cc801750118900145f8a22fa93ac4c6e1bfd81aa98b0a55
-
SHA512
6686579ae56a042ebf1e17fbc592190ed2432476a36d4654995ec64248c313a657c1a42c5f640c961ed2250879d7a3ed45797709017b87d20e88fab292d3479e
-
SSDEEP
393216:SDfpIJkxJZare06doPx1NZVZrMdBgJKUWLhCSoIfj6u/:SDRIJkxureJdoPhxAOJGhloIug
Score8/10-
Blocklisted process makes network request
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-