6c1fe71d6c5a169b823dc2562c3da151b31f5debfd4597d9f7aa9f59751d9098 | Triage

Submit
Reports

Overview

overview

6

Static

static

1

ScreenConn...se.msi

windows11-21h2-x64

6

Sharing

General

Target

ScreenConnect_24.1.9.8915_Release.msi
Size

102.6MB
Sample

240604-q92rkshg2t
MD5

05e15901dab785636cada71c9f2aae0f
SHA1

8d84202343f2f2f822d2a651ab8a2b642b8735be
SHA256

6c1fe71d6c5a169b823dc2562c3da151b31f5debfd4597d9f7aa9f59751d9098
SHA512

e73d19823d78d5291e0648b30041b44e9f92b1c2cb0f7274633759d34cf5037abb12b0d0ff9c1cf3af98dbc34e1737e45235af6226cf8e9fed22e6f2a06c849d
SSDEEP

1572864:eC4S63djTcq/oJXEsQdMmzA01x1yypqWOXPg1NamPSpZxmTBIL2D+3achTCySe5p:itPcq/OBiAU1dp+fePIxm9Y2+drJLt

Score

6^/10

Static task

static1

Behavioral task

behavioral1

Sample

ScreenConnect_24.1.9.8915_Release.msi

Resource

win11-20240419-en

windows11-21h2-x64

20 signatures

150 seconds

Malware Config

Targets

- Target
  
  ScreenConnect_24.1.9.8915_Release.msi
- Size
  
  102.6MB
- MD5
  
  05e15901dab785636cada71c9f2aae0f
- SHA1
  
  8d84202343f2f2f822d2a651ab8a2b642b8735be
- SHA256
  
  6c1fe71d6c5a169b823dc2562c3da151b31f5debfd4597d9f7aa9f59751d9098
- SHA512
  
  e73d19823d78d5291e0648b30041b44e9f92b1c2cb0f7274633759d34cf5037abb12b0d0ff9c1cf3af98dbc34e1737e45235af6226cf8e9fed22e6f2a06c849d
- SSDEEP
  
  1572864:eC4S63djTcq/oJXEsQdMmzA01x1yypqWOXPg1NamPSpZxmTBIL2D+3achTCySe5p:itPcq/OBiAU1dp+fePIxm9Y2+drJLt
Score

6^/10
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy