0bc2ca6d4ec1213ed25652d790304b0585f4312cfc2afda66069a201a0981865 | Triage

Sharing

General

Target

SaNet.st_Final.Draft.12.0.9.110.rar
Size

96.2MB
Sample

240109-xhdzrshed2
MD5

c9ffc9ee2c390eafbae5546dbc53d6ae
SHA1

64756fcb0c8406ee073287e964d0996ab6c18e28
SHA256

0bc2ca6d4ec1213ed25652d790304b0585f4312cfc2afda66069a201a0981865
SHA512

eebb332ff1cf75a79535f6b53ad988c32641f031f371ad3a6028486929eaa7898cfddac5bef0554e1ffdd2bd342e5c81b67e7284983c40b13bd50785c7933a4f
SSDEEP

1572864:lGQ4zYIcfWE95KwQbppexvt1xgQFoohWzRKPATjOk/1Nx+hv/ifxnZXb:lGQ4zzc/KhGPPVWzEATSq4XwJb

Score

7^/10

Malware Config

Targets

- Target
  
  Crack/Final Draft.exe
- Size
  
  45.2MB
- MD5
  
  99bde827b6d430c154239f213e9791cc
- SHA1
  
  c24da1357c0f89004096523cd414b7eb3f337016
- SHA256
  
  d298b94adf13cbf4e17e5a2abf7b2669dd8c08614505224d0958f2bf59a4a9a1
- SHA512
  
  8a02d1ce269318caeed276b2238e2db2eb3a45329479322572eca6a733081f78e0bc8dbfb1685967ac9d840cdea3c5e4547cf463ff214a8e3f63ae83f337d0a3
- SSDEEP
  
  196608:znZYWJwcmfVxAePH1krSLnSMdC0xMwFLOyomFHKnP:TZYBvfV6w/TdC0bF
Score

1^/10
behavioral1
- Target
  
  FinalDraftSetup.msi
- Size
  
  87.8MB
- MD5
  
  7ad2261a79a24a4ef1eb973e6e6b6623
- SHA1
  
  83d180f985f58c7e26cdbf0bcc85e225f2e48f47
- SHA256
  
  8db2143b8dde15df29e01b2a850225a1e4d6fd9d1a10fee34464833e7259fbfe
- SHA512
  
  779bcb29c7185b9a05fd6bd4436eb4ad675cb71a0bab839f278e3f92afae8eba4477f958bb6fd6b0c2443e05d5300983b04f4c094357a03d8d53d7862d6b5cf3
- SSDEEP
  
  1572864:t5gU7tnhUDIP5XbidxCuD8uh7//40U3NSSpWql46Qds9e7YVmw3l3YH2vf16lUKS:h7th+qbyQmhjXU3NSOWq12s91Vmw3yH2
Score

7^/10
- Loads dropped DLL
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2