04a0c11de12532d2b7b1e5c00e1b1e763c59c494ca8162de7a78eb5a408395bb | Triage

Submit
Reports

Overview

overview

7

Static

static

3

RSL_Helper....5.exe

windows10-1703-x64

7

Sharing

General

Target

RSL_Helper_InitalSetup_V4.5.exe
Size

173.8MB
Sample

240821-xpgn8syfnq
MD5

d8bc32ad09696e29d14121a0af47c183
SHA1

08a8c9623baef7cdcc81bf598c1506d0c6fb9cf1
SHA256

04a0c11de12532d2b7b1e5c00e1b1e763c59c494ca8162de7a78eb5a408395bb
SHA512

c33272cacb404fbe6e579662d7c28d6d570d7cc3c3befe78ed37d2aa528af391fbb49edd261098878d8d1371ec41ba2d9117e72067e7e95f1449a5e70553b44c
SSDEEP

3145728:WwSTySv/M8tvuVvOJimZTjOj6jIohHUUEd7EW8sbQ4YqLW8BSmtHIh6Z:rSTXH7tvcvOJiaNjSne32Q4YGWDmtIY

Score

7^/10

discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

RSL_Helper_InitalSetup_V4.5.exe

Resource

win10-20240404-en

windows10-1703-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  RSL_Helper_InitalSetup_V4.5.exe
- Size
  
  173.8MB
- MD5
  
  d8bc32ad09696e29d14121a0af47c183
- SHA1
  
  08a8c9623baef7cdcc81bf598c1506d0c6fb9cf1
- SHA256
  
  04a0c11de12532d2b7b1e5c00e1b1e763c59c494ca8162de7a78eb5a408395bb
- SHA512
  
  c33272cacb404fbe6e579662d7c28d6d570d7cc3c3befe78ed37d2aa528af391fbb49edd261098878d8d1371ec41ba2d9117e72067e7e95f1449a5e70553b44c
- SSDEEP
  
  3145728:WwSTySv/M8tvuVvOJimZTjOj6jIohHUUEd7EW8sbQ4YqLW8BSmtHIh6Z:rSTXH7tvcvOJiaNjSne32Q4YGWDmtIY
Score

7^/10

discovery
- Executes dropped EXE
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy