a9f7758895f964182cda2f5d32682ea9b93ad02730438959dab8b26280f19cb9 | Triage

Sharing

General

Target

spacedesk_driver_Win_10_64_v2116.msi
Size

4.7MB
Sample

240521-t7arvsbh88
MD5

c3ba4b2ce59a288196c9dfd992da36d8
SHA1

885eaadf9a44a4744cf0eccdb34918f4b0b5bc2f
SHA256

a9f7758895f964182cda2f5d32682ea9b93ad02730438959dab8b26280f19cb9
SHA512

20671bda7dff6e18cb4eb4091b832817db0e7a09981454e5bfead0c26830907e46aa37183bb6713bfa1be710711d1b1bf1310e5014970cd62c26d8cd80637417
SSDEEP

98304:ufZwA1OhvBdMe4kQuwmC9y3eSc75IxRH:WKJBdJ4knC0uSc75Ix

Score

6^/10

Malware Config

Targets

- Target
  
  spacedesk_driver_Win_10_64_v2116.msi
- Size
  
  4.7MB
- MD5
  
  c3ba4b2ce59a288196c9dfd992da36d8
- SHA1
  
  885eaadf9a44a4744cf0eccdb34918f4b0b5bc2f
- SHA256
  
  a9f7758895f964182cda2f5d32682ea9b93ad02730438959dab8b26280f19cb9
- SHA512
  
  20671bda7dff6e18cb4eb4091b832817db0e7a09981454e5bfead0c26830907e46aa37183bb6713bfa1be710711d1b1bf1310e5014970cd62c26d8cd80637417
- SSDEEP
  
  98304:ufZwA1OhvBdMe4kQuwmC9y3eSc75IxRH:WKJBdJ4knC0uSc75Ix
Score

6^/10
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2