5aecd6c41a3d3dfb92bf0e63203ae431a783d4788a8bad9785bb660f4fd02367 | Triage

Sharing

General

Target

5aecd6c41a3d3dfb92bf0e63203ae431a783d4788a8bad9785bb660f4fd02367.msi
Size

11.9MB
Sample

240218-ggayqaee5y
MD5

038007ecacd3af41fc68569fa1e4c293
SHA1

2fbc35f9bb6d7a7adc0dde02d3de50452871a5c6
SHA256

5aecd6c41a3d3dfb92bf0e63203ae431a783d4788a8bad9785bb660f4fd02367
SHA512

7fbc6dd3f8e74e68043627ee6aab81328881bbb22385cc71b26aa79712a5ab9585ab8491d80c2219ce28f521c983af820a5682ae317e5ac7c76bc6557ad0d172
SSDEEP

196608:asOOzrjlf8X/+tG1iDjCyfgfR4WEDFrKyv99be8MQw8fCDKCJyKCkNBHDbfGLySc:asOOzn15D7oxQbenH4CDJJyEXPeLvDch

Score

6^/10

Malware Config

Targets

- Target
  
  5aecd6c41a3d3dfb92bf0e63203ae431a783d4788a8bad9785bb660f4fd02367.msi
- Size
  
  11.9MB
- MD5
  
  038007ecacd3af41fc68569fa1e4c293
- SHA1
  
  2fbc35f9bb6d7a7adc0dde02d3de50452871a5c6
- SHA256
  
  5aecd6c41a3d3dfb92bf0e63203ae431a783d4788a8bad9785bb660f4fd02367
- SHA512
  
  7fbc6dd3f8e74e68043627ee6aab81328881bbb22385cc71b26aa79712a5ab9585ab8491d80c2219ce28f521c983af820a5682ae317e5ac7c76bc6557ad0d172
- SSDEEP
  
  196608:asOOzrjlf8X/+tG1iDjCyfgfR4WEDFrKyv99be8MQw8fCDKCJyKCkNBHDbfGLySc:asOOzn15D7oxQbenH4CDJJyEXPeLvDch
Score

6^/10
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2