f33bde933002aff27963eef3cbd1c07c8ebf4e8521ed02079ccbc6a63b953bef | Triage

Sharing

General

Target

Winfile_v10.3.0.0.zip
Size

2.7MB
Sample

240901-scshratfqn
MD5

120b1acfe4d332a2bea381f714f6cfa9
SHA1

299b5a64d226e0479df86b99f13f233ef75f568f
SHA256

f33bde933002aff27963eef3cbd1c07c8ebf4e8521ed02079ccbc6a63b953bef
SHA512

bfd0e2a58407c0e6ab830dafef7046192d460ee482814b5a034e5a2055d248b51801455b364930787e7b79d65dfad260732543ea700cd26899cace7b985c7104
SSDEEP

49152:Y7vauX5qcMshy9gn0RAO2qq6JZnqvcG1QsLGZC2wi39n/EGkKqrDayilX:YvauJq46s0RAOLqsnqkiBz439MA2dilX

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  arm64/Winfile.exe
- Size
  
  888KB
- MD5
  
  89b5f19e63463c4f16f0e09587ef6045
- SHA1
  
  af523a4f1fdcacccee7e92312bc06ac56e82c175
- SHA256
  
  e82e6047c857ec4d226943dc9c4a3edfc61f4d3f43a587393b501d16c3a985dd
- SHA512
  
  c5d29902aaf3e6b15977090dfd6c5fd92e8432be398fcb37c9af8afbbce25d07d9f3afa4bf8a60416774a9276be2aa5386b43f5a5f46c115b78d4956e7a59be8
- SSDEEP
  
  6144:x5vFFnxLMKpzeWEeY8poSgOV2X9z6sM90C196UKcxt9eBV+XKhn:x5v7xLMKleWboSgOk6smmYe80n
Score

1^/10
behavioral1 behavioral2
- Target
  
  x64/Winfile.exe
- Size
  
  895KB
- MD5
  
  25c9c5bfb82d914c99381c7fa218f07e
- SHA1
  
  485cf3932aaaa5e9029f477159484026771bc1bd
- SHA256
  
  6965f3c52949378748312079b246dfc7eb03e397a134c2a642fe1a7974be6ca7
- SHA512
  
  3e9f5cdb5aa31037d574585d732844bc9eeba71b1d809c2d76fd99387106e32d90e70294887b75cb87919ae0f666375862213f26437c82f322f0d7baa637918c
- SSDEEP
  
  6144:MewCQGIO46MuhwkLOgVOHSjO5PYStow5NJCW3l8vc3tUMFxt9eBV+XKhL:MenIO46T2kLOgALVow3Qy9Te80L
Score

6^/10
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral3 behavioral4
- Target
  
  x86/WINFILE.CHM
- Size
  
  78KB
- MD5
  
  82814153d752e2d9482b31e9815a7232
- SHA1
  
  8e4bfaaa102a5c14fe6bc837bf3da1c2818c8edf
- SHA256
  
  959d55c05c3c7d65b3cf3c08174adb0b20a6d53722ea8f9c523d0e2a12d221fd
- SHA512
  
  49842262a42d373ccd7707d4d5987816d8232699fbb48c3fc7424d4103046de8d2e290974da28cc0cce9c36a27170b7e21c06c6085ffb9befa91179569764751
- SSDEEP
  
  1536:mkgmgR3rRWeV07FIxsZiwE7ZrVQsPn+8ShISdo8WAUEwvBg5u:im43ZVOIS8vNrV+tW2HG0u
Score

1^/10
behavioral5 behavioral6
- Target
  
  x86/Winfile.exe
- Size
  
  854KB
- MD5
  
  99c29e44c53ea27c2dff5c90266ac9d0
- SHA1
  
  27025f4f618bbda9ad10e40c22ec6406f080f708
- SHA256
  
  f5ffba7f4b911706d347c2ff5ea2f1c51fa2af687c0f9f34fc72985e5226cf28
- SHA512
  
  2d5166cc8a4e7bc57aaa0db368ae421e5ccf661ad27008f6baa2abe8e97a1c7b436452d3c7b28de93ac4d6a49fcec6ee308db01f352edb91e690a21659a7af75
- SSDEEP
  
  12288:28eNxZgQyObm4PyALs6gjsM3jGkWlR7QfMoyYwM5E+e80aW04:22QPbLs6goM3jGkUVYwmErlW4
Score

6^/10

discovery
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral7 behavioral8

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8