6b6facbae84b671906e4a2502652f9ecc85ed972606855a931d855fa3f7ad234 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

epm_trial_installer.17245738365431b1102451.exe
Size

2.3MB
Sample

240825-kbw6jsweqr
MD5

043803c483420a7d6c7d426b85a5cb8c
SHA1

52e98ab8905b45afe855d17405e6a89bb701ebf7
SHA256

6b6facbae84b671906e4a2502652f9ecc85ed972606855a931d855fa3f7ad234
SHA512

9fc6c869b053dd008ea9a104a04f1862a12542d7d530f9f2a0bfd3536f5f3115ec5141b652daf5ea3aad6933edc4fc628fd78660e5bcc59438ca09da30d9d24e
SSDEEP

49152:XcLhsgYt+1txi8vgR85eAZXmx/e7G+EpcII6v/SvnESvRknqKwoRnsToO5q:ohsJt+1eYgS5z7G+EpcIIAyQRnCnA

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  epm_trial_installer.17245738365431b1102451.exe
- Size
  
  2.3MB
- MD5
  
  043803c483420a7d6c7d426b85a5cb8c
- SHA1
  
  52e98ab8905b45afe855d17405e6a89bb701ebf7
- SHA256
  
  6b6facbae84b671906e4a2502652f9ecc85ed972606855a931d855fa3f7ad234
- SHA512
  
  9fc6c869b053dd008ea9a104a04f1862a12542d7d530f9f2a0bfd3536f5f3115ec5141b652daf5ea3aad6933edc4fc628fd78660e5bcc59438ca09da30d9d24e
- SSDEEP
  
  49152:XcLhsgYt+1txi8vgR85eAZXmx/e7G+EpcII6v/SvnESvRknqKwoRnsToO5q:ohsJt+1eYgS5z7G+EpcIIAyQRnCnA
Score

6^/10

discovery
- Downloads MZ/PE file
behavioral1
- Target
  
  $TEMP/downloader_easeus/2.2.0/5trial/EDownloader.exe
- Size
  
  1.2MB
- MD5
  
  75c6aa0ea529a99be1aa7a6ce1d40eb7
- SHA1
  
  90b78031df82bb75366e26c5313ed2b5f41a4dc1
- SHA256
  
  2fae081440a24194dae7aeab20612cff53f6c94e6c0d09ead3ba2cba70a87e46
- SHA512
  
  d35250868409cb1c93471af557f895eaf76c38599c28730fb7a75300175c1b78c288e259d4d0d5fe1fefadb68c1f760ca6b1c2b7860598ddc1483b303cb500a0
- SSDEEP
  
  24576:2s/G6GbJFLBoVs9nIDak3ri91DcSF+oYPa5crmMO4k5mBc:2WsDsbWgo/5wBvk5mBc
Score

4^/10

discovery
behavioral2
- Target
  
  $TEMP/downloader_easeus/2.2.0/5trial/aliyun/AliyunWrap.dll
- Size
  
  499KB
- MD5
  
  04bb1a799bcdba7643201749633e8a3a
- SHA1
  
  2039c43181f4a64bef31617749b517e30dae8a17
- SHA256
  
  84beff2c37a816ad67a2a9ed6cdb61469a1bb6971d22650e6c77098ac2fc6ebc
- SHA512
  
  4118717d6460aeeed7a8fcc8e5fb07abc1e55569bf5215e4f96b6c213bee73cd53cdc93953dbc0d923b1b9ad9cbbe06da78f5378e8777708928a6ab6073aea75
- SSDEEP
  
  12288:sErmJOpaClo3cm/jFjEwJaZECM4xv+Dk4Dl36PIp5HqEY727+:sBFYHnZQDsIbqES2q
Score

3^/10

discovery
behavioral3
- Target
  
  $TEMP/downloader_easeus/2.2.0/5trial/aliyun/AliyunWrapExe.exe
- Size
  
  112KB
- MD5
  
  5d4e7b1182cf2e949223874e745e1b2a
- SHA1
  
  bca1eee3d745456f2cab6bee060e1ff01aa34b1a
- SHA256
  
  8465c20acc7934dee0c3856a665bd62670ee897d7e3f8265d6588f1279aefab6
- SHA512
  
  076db0349c321aa20cca3bee934a068ec2414d7af3dba80d18f9954d6d25b8a97fbb68c37fc7b9e9158ac6e146e35c9ada4dfe681bd5bc4abfe610ebbcb91ad3
- SSDEEP
  
  1536:O5LFMyXcLzwXUCyFw13KR8DQ8VrD4y2Lk34SPkRuD82ZnxWjckbiQOe0W2/5CE7Y:meXzrDmQ8Vd2Lk3BHxWn0B/5CEdC
Score

3^/10

discovery
behavioral4
- Target
  
  $TEMP/downloader_easeus/2.2.0/5trial/aliyun/InfoForSetup.exe
- Size
  
  61KB
- MD5
  
  590682b853848e2119f74d9b79a079c0
- SHA1
  
  dfd265c022b769245e1217242af2f0f77cbe3432
- SHA256
  
  d824d6f746c8dfb8c5aefff3ead1b66a6d770075c7400445b4bb8b668de0ee41
- SHA512
  
  f896dad146a9939f8c65cdd932cca408c589558e7d6693dc5b25c811935ae2ed3f43acd6783aa47b83d632baa7ce9298c251e03e4132110e589ccf2bdf195bd8
- SSDEEP
  
  768:Tlo/MU0MQBr6xtYlQsSPIe5HLF//6HARKUu1qG5n3KgpnTgy/MId50LbpYiBwB:TeEZMQBru2n4LVCH8KUjGpJT50Z7Bg
Score

3^/10

discovery
behavioral5

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5