Overview

overview

8

Static

static

1

windowsdes...64.exe

windows7-x64

8

windowsdes...64.exe

windows10-2004-x64

4

Sharing

Copy URL
Twitter E-mail

General

  • Target

    windowsdesktop-runtime-6.0.20-win-x64.exe

  • Size

    54.7MB

  • Sample

    230805-bc434sfa58

  • MD5

    2dd697493474c5b7329f012364580ad6

  • SHA1

    ac76529b02e3c2704eae53229051dcab00508296

  • SHA256

    b812dbd07dec698b2b4b97d68643b2f494659c1c0c13b215abbe077c0facaa09

  • SHA512

    eefd2e2dabb633b0d6c7e523dbdf072c9634088cc6d38c63aaa17c004e38366bcf2dcf5305093b5279a7366c11e177366ceb9d48c14600e140f2efef6caa6308

  • SSDEEP

    1572864:tOn0f2waM91i2rFqo5Mst0rqzAHVuKtRBYcAmCQp9sqV:tJBaKi2rIoplKQ2Dp6qV

Score
8/10
persistence

Malware Config

Targets

    • Target

      windowsdesktop-runtime-6.0.20-win-x64.exe

    • Size

      54.7MB

    • MD5

      2dd697493474c5b7329f012364580ad6

    • SHA1

      ac76529b02e3c2704eae53229051dcab00508296

    • SHA256

      b812dbd07dec698b2b4b97d68643b2f494659c1c0c13b215abbe077c0facaa09

    • SHA512

      eefd2e2dabb633b0d6c7e523dbdf072c9634088cc6d38c63aaa17c004e38366bcf2dcf5305093b5279a7366c11e177366ceb9d48c14600e140f2efef6caa6308

    • SSDEEP

      1572864:tOn0f2waM91i2rFqo5Mst0rqzAHVuKtRBYcAmCQp9sqV:tJBaKi2rIoplKQ2Dp6qV

    Score
    8/10
    persistence

    • Blocklisted process makes network request

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks