5049eb18e9bcc0e487cdc075ab97ed8cb7a4b489699c49c1a9cdfac5d7daa0e2 | Triage

Sharing

General

Target

psqlodbc.msi
Size

2.2MB
Sample

230720-k4bqbaeh39
MD5

7b5738ce795235e0eb8db84846190960
SHA1

f5301cc78dbe85ecf16087051cc28ef872e9e41b
SHA256

5049eb18e9bcc0e487cdc075ab97ed8cb7a4b489699c49c1a9cdfac5d7daa0e2
SHA512

aaf521d463a56f1add5b4fa649dc5a583a605d1436ec2601e6a654888bd008095eafb49b6d2ffeb1138a456a0433211450562e626529af4cffd2feaaf7ed9a7e
SSDEEP

49152:o7rqcyTTgvUn3jqBwsK96r06q2RiJN35H3ODvNjkIu/4X+kcbLt8fQ:o+cMn3jqB3A61I3l3OBkIu1kcbp8fQ

Score

6^/10

Malware Config

Targets

- Target
  
  psqlodbc.msi
- Size
  
  2.2MB
- MD5
  
  7b5738ce795235e0eb8db84846190960
- SHA1
  
  f5301cc78dbe85ecf16087051cc28ef872e9e41b
- SHA256
  
  5049eb18e9bcc0e487cdc075ab97ed8cb7a4b489699c49c1a9cdfac5d7daa0e2
- SHA512
  
  aaf521d463a56f1add5b4fa649dc5a583a605d1436ec2601e6a654888bd008095eafb49b6d2ffeb1138a456a0433211450562e626529af4cffd2feaaf7ed9a7e
- SSDEEP
  
  49152:o7rqcyTTgvUn3jqBwsK96r06q2RiJN35H3ODvNjkIu/4X+kcbLt8fQ:o+cMn3jqB3A61I3l3OBkIu1kcbp8fQ
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2