dfc5c28f35828b2cac572cb7b41bf44c4d37fd1a4ac96d14b9c7c23b6bf08526 | Triage

Sharing

General

Target

PortScan.exe
Size

676KB
Sample

240405-ppekwaca6y
MD5

6cae91d64edcca814a39cb7abe0301c5
SHA1

b090f1cddeb7fabcbe530a2c15d852df24a6fe66
SHA256

dfc5c28f35828b2cac572cb7b41bf44c4d37fd1a4ac96d14b9c7c23b6bf08526
SHA512

eb01c732ec25c95257b802ca88e6f58820b6f765029d021f6bb026a06ddf6f96117960330e23cc1c857189c9a7df217e130ad3963a212300118afbee31ffa12c
SSDEEP

12288:ymdjFCID9sQnX4t7PHZB+/5j2VpjxxbsThxVseW++3xE:JUID+QnX4t7PHZajKjxxbGxVseWlh

Score

6^/10

Malware Config

Targets

- Target
  
  PortScan.exe
- Size
  
  676KB
- MD5
  
  6cae91d64edcca814a39cb7abe0301c5
- SHA1
  
  b090f1cddeb7fabcbe530a2c15d852df24a6fe66
- SHA256
  
  dfc5c28f35828b2cac572cb7b41bf44c4d37fd1a4ac96d14b9c7c23b6bf08526
- SHA512
  
  eb01c732ec25c95257b802ca88e6f58820b6f765029d021f6bb026a06ddf6f96117960330e23cc1c857189c9a7df217e130ad3963a212300118afbee31ffa12c
- SSDEEP
  
  12288:ymdjFCID9sQnX4t7PHZB+/5j2VpjxxbsThxVseW++3xE:JUID+QnX4t7PHZajKjxxbGxVseWlh
Score

6^/10
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2