839e2e8904c5d91ab82e848a0f5ee93de32cf1d8539a9be8676d77c948e8ad14 | Triage

Submit
Reports

Overview

overview

8

Static

static

3

PCToaster.exe

windows10-1703-x64

Sharing

General

Target

PCToaster.zip
Size

62KB
Sample

240622-e3c9vsxhmg
MD5

eb537eed40cf1eca96e2bf352df65089
SHA1

ca71aa23b227b816b017e267203fa3319b59d8fc
SHA256

839e2e8904c5d91ab82e848a0f5ee93de32cf1d8539a9be8676d77c948e8ad14
SHA512

95dca4c07c6cccbbaae47c6b1ed5083375f9b9037555efff8db8f3ac69388b4ffd9c9652e2f5db498532b4b3ceee160f190be31a85b242ba476d89580963f487
SSDEEP

1536:6uhyUJLCbXUS3bS8FJA5KP/aCUnYzulKP5Ud7bAh:TZJLCbXUSrS8Q0PY+ulWn

Score

8^/10

discovery exploit

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

PCToaster.exe

Resource

win10-20240404-en

discovery exploit

windows10-1703-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  PCToaster.exe
- Size
  
  411KB
- MD5
  
  04251a49a240dbf60975ac262fc6aeb7
- SHA1
  
  e211ca63af2ab85ffab1e5fbbdf28a4ef8f77de0
- SHA256
  
  85a58aa96dccd94316a34608ba996656a22c8158d5156b6e454d9d69e6ff38c3
- SHA512
  
  3422a231e1dadb68d3567a99d46791392ecf5883fd3bbc2cae19a595364dac46e4b2712db70b61b488937d906413d39411554034ffd3058389700a93c17568d2
- SSDEEP
  
  3072:quJFS5Aqu+WwjxeI/0gVnfKl0FA+aPobO24yNz88iu8vDYHTlI5EJD5Hbibfd6PK:/JM0mCsWq1/qpz+nF5c
Score

8^/10

discovery exploit
- Possible privilege escalation attempt
  exploit
- Modifies file permissions
  discovery
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Modify Registry

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discoveryexploit

© 2018-2024

Terms | Privacy