d0c53b1bfa741b7f6484200faf8452e5a779357c2a29aa6b0dfdedf7173e903f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

OpenJDK21U-jdk_x64_windows_hotspot_21.0.2_13.msi
Size

171.3MB
Sample

240305-wthxesec59
MD5

5374071ddf1e21ffdcbdaba3c32ccff3
SHA1

d2c53a16b0d86c3012e3bb5f1093752106c460f5
SHA256

d0c53b1bfa741b7f6484200faf8452e5a779357c2a29aa6b0dfdedf7173e903f
SHA512

12bf88c408d656f858b68fa0762c71d4987932e62cb3dc17f5ff28c231bd41ecbfc9159b15c3a6482ecce7323eadbe5da6e5d15cd8663c774e6efd152be0d223
SSDEEP

3145728:/p73XE8Bgw2KJlA6yC4NiZ4C4ES9ZROLqWWdVmdgostZn27DQym5rvU:/xUAl34lC09ZRVb6dgosb2/UVc

Score

6^/10

Malware Config

Targets

- Target
  
  OpenJDK21U-jdk_x64_windows_hotspot_21.0.2_13.msi
- Size
  
  171.3MB
- MD5
  
  5374071ddf1e21ffdcbdaba3c32ccff3
- SHA1
  
  d2c53a16b0d86c3012e3bb5f1093752106c460f5
- SHA256
  
  d0c53b1bfa741b7f6484200faf8452e5a779357c2a29aa6b0dfdedf7173e903f
- SHA512
  
  12bf88c408d656f858b68fa0762c71d4987932e62cb3dc17f5ff28c231bd41ecbfc9159b15c3a6482ecce7323eadbe5da6e5d15cd8663c774e6efd152be0d223
- SSDEEP
  
  3145728:/p73XE8Bgw2KJlA6yC4NiZ4C4ES9ZROLqWWdVmdgostZn27DQym5rvU:/xUAl34lC09ZRVb6dgosb2/UVc
Score

6^/10
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2