e52a8d0337bae656b01cb76c03975ac3d75ac4984c028ba2a6531396dea6dddd | Triage

Sharing

General

Target

jre-8u401-windows-x64.exe
Size

64.4MB
Sample

240305-3wqhlseb67
MD5

af1d24091758f1e02d51dc5f5297c932
SHA1

dc3f98dded6c1f1e363db6752c512e01ac9433f3
SHA256

e52a8d0337bae656b01cb76c03975ac3d75ac4984c028ba2a6531396dea6dddd
SHA512

8d4264a6b17f7bbfd533b11ec30d7754a960a9f2fbef10c9977b620051c5538d8eb6080ea78e070904c7c52a6ce998736fad2037f6389ad4c5c0ce3f1d09e756
SSDEEP

1572864:v7p5VFBCjL4FwlRN2Adn3aQrJlPVYIcBO7:vGTW63aEiIcBS

Score

6^/10

Malware Config

Targets

- Target
  
  jre-8u401-windows-x64.exe
- Size
  
  64.4MB
- MD5
  
  af1d24091758f1e02d51dc5f5297c932
- SHA1
  
  dc3f98dded6c1f1e363db6752c512e01ac9433f3
- SHA256
  
  e52a8d0337bae656b01cb76c03975ac3d75ac4984c028ba2a6531396dea6dddd
- SHA512
  
  8d4264a6b17f7bbfd533b11ec30d7754a960a9f2fbef10c9977b620051c5538d8eb6080ea78e070904c7c52a6ce998736fad2037f6389ad4c5c0ce3f1d09e756
- SSDEEP
  
  1572864:v7p5VFBCjL4FwlRN2Adn3aQrJlPVYIcBO7:vGTW63aEiIcBS
Score

6^/10
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2