dc11c58dd1a2e405f7fb6d60ac2ea9cf7650ab4465db3a96e406af42873e41c2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

spacedesk_driver_Win_10_64_v1076_BETA.msi
Size

4.7MB
Sample

231126-t19bvaad72
MD5

172118a7436d5ab6a245d25a507c4ce4
SHA1

6a79bd967613d53363e85837905260ae76c0f7a9
SHA256

dc11c58dd1a2e405f7fb6d60ac2ea9cf7650ab4465db3a96e406af42873e41c2
SHA512

1ab404f7806da61df50aa7fefc5434c1ec517543eb996823393e68e3996b85b7c8dda79d1535b5f68f0bd4305d4118bc4711fbf21fbb8d7284e7ceb7061e6f16
SSDEEP

98304:CNdu2ec/MW/Ch9Dq6N0HBb1613PxnEKI:CHu2ec/xCh92hHBb1O3Px

Score

6^/10

Malware Config

Targets

- Target
  
  spacedesk_driver_Win_10_64_v1076_BETA.msi
- Size
  
  4.7MB
- MD5
  
  172118a7436d5ab6a245d25a507c4ce4
- SHA1
  
  6a79bd967613d53363e85837905260ae76c0f7a9
- SHA256
  
  dc11c58dd1a2e405f7fb6d60ac2ea9cf7650ab4465db3a96e406af42873e41c2
- SHA512
  
  1ab404f7806da61df50aa7fefc5434c1ec517543eb996823393e68e3996b85b7c8dda79d1535b5f68f0bd4305d4118bc4711fbf21fbb8d7284e7ceb7061e6f16
- SSDEEP
  
  98304:CNdu2ec/MW/Ch9Dq6N0HBb1613PxnEKI:CHu2ec/xCh92hHBb1O3Px
Score

6^/10
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1