Overview

overview

6

Static

static

1

RemoteDesk...64.msi

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    RemoteDesktop_1.2.5405.0_x64.msi

  • Size

    29.6MB

  • Sample

    240516-krvbwsdc35

  • MD5

    7552e7db7251fe9d77e81c27a9530911

  • SHA1

    e642571f7bbaffa4a52f47f21a3a647b272b78b0

  • SHA256

    4112c41c16346cbc1d12ce848456d365853d66afa75f4f4011aa5da200a03a86

  • SHA512

    f3a58fc75e284496502b26523080d599a365bf0ee0e9f8b1e183133f52baffbb54398e55aa75ec16ba791c36c6ceb6c99ade1217edabf151ceb88a1a38c31fda

  • SSDEEP

    786432:nExe/nmv9R/WRwm1S+tjhlRNlnBQu4qfwydn+qjoPDFEejA2:n5/nmv/+R71DJR6RALxJ0LFE

Score
6/10

Malware Config

Targets

    • Target

      RemoteDesktop_1.2.5405.0_x64.msi

    • Size

      29.6MB

    • MD5

      7552e7db7251fe9d77e81c27a9530911

    • SHA1

      e642571f7bbaffa4a52f47f21a3a647b272b78b0

    • SHA256

      4112c41c16346cbc1d12ce848456d365853d66afa75f4f4011aa5da200a03a86

    • SHA512

      f3a58fc75e284496502b26523080d599a365bf0ee0e9f8b1e183133f52baffbb54398e55aa75ec16ba791c36c6ceb6c99ade1217edabf151ceb88a1a38c31fda

    • SSDEEP

      786432:nExe/nmv9R/WRwm1S+tjhlRNlnBQu4qfwydn+qjoPDFEejA2:n5/nmv/+R71DJR6RALxJ0LFE

    Score
    6/10

    • Blocklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks