2a9ceaf6be1769074b97770a8091f8ece69c4a03ca7b94d84422443e16716be9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

usb-file-resc_x64 21.0.0.4.exe
Size

894KB
Sample

240902-wnmneswbjd
MD5

9909940ee69f237e464c9de01e568d83
SHA1

df997e224d9a1dc6889881b5b3df03db7b44d316
SHA256

2a9ceaf6be1769074b97770a8091f8ece69c4a03ca7b94d84422443e16716be9
SHA512

2c65b6b7434585039e42c016477ab07436666c4b148e7248aa1c4df1d83a3146ef62fe905f872413315303b9d3b80fc5fe85ad6ffae0901f81247733b383a577
SSDEEP

12288:IFBAQwAigXW8dPwdW7pzAldiqEhF9i0/THuWTPzq0zdryPiP/q:Inx9p9TOv0zd2PiXq

Score

8^/10

defense_evasion

Malware Config

Targets

- Target
  
  usb-file-resc_x64 21.0.0.4.exe
- Size
  
  894KB
- MD5
  
  9909940ee69f237e464c9de01e568d83
- SHA1
  
  df997e224d9a1dc6889881b5b3df03db7b44d316
- SHA256
  
  2a9ceaf6be1769074b97770a8091f8ece69c4a03ca7b94d84422443e16716be9
- SHA512
  
  2c65b6b7434585039e42c016477ab07436666c4b148e7248aa1c4df1d83a3146ef62fe905f872413315303b9d3b80fc5fe85ad6ffae0901f81247733b383a577
- SSDEEP
  
  12288:IFBAQwAigXW8dPwdW7pzAldiqEhF9i0/THuWTPzq0zdryPiP/q:Inx9p9TOv0zd2PiXq
Score

8^/10

defense_evasion
- Blocklisted process makes network request
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasion