e29d4a0cb5456d4a450243214360fc39db66dce5ed5e6def88112a00fbaea5f2 | Triage

Sharing

General

Target

谷歌安装包.zip
Size

17.0MB
Sample

240919-hqyxkswfjp
MD5

cb67aaac4763c37a9f3751a7b6196987
SHA1

235ccfaca9bb9097f672bab467e43a64ad04d462
SHA256

e29d4a0cb5456d4a450243214360fc39db66dce5ed5e6def88112a00fbaea5f2
SHA512

9363ec3e6be91bd733afedef1bcb8cb16eddbfce145d6dfd0af3b1329e27f7bac33c21e1ffadd5f3ca582e3ce1933d6c0b3b202556b6d28b09f1b5db576e5959
SSDEEP

393216:QgPe4c2O8YQceEm/DKlIG/hFeqsnzLcr7F2h2DMzRjr2H3yRe:Fnc2PYB8xwxsn47F28IN2H3yRe

Score

6^/10

discovery persistence privilege_escalation

Malware Config

Targets

- Target
  
  谷歌官网安装包.msi
- Size
  
  18.9MB
- MD5
  
  613f5baf5dc10b078583d76dc524638c
- SHA1
  
  e418401b983ff628622f972e2b9c72f21e2e104b
- SHA256
  
  4f814cc796e43cb4214554dc9e3d7c8512f8f6e6fa6969b3f6e781c1476968d5
- SHA512
  
  822581b42b507bed664fc3f00db18a865011f23a547d6f73762a8d948b8f0e8791c624192dad3b6b00acb061d75d43208cdf09fbd90a5554638b10b56d1d8b5b
- SSDEEP
  
  393216:9vbbOv23u55DQRaGtTT6GoX1YOL7/0Nib+EFpvMVdoH:xn4nftUVoXp7/0EyAMVdoH
Score

6^/10

discovery persistence privilege_escalation
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Installer Packages

Privilege Escalation

Event Triggered Execution

Installer Packages

Defense Evasion

System Binary Proxy Execution

Msiexec

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceprivilege_escalation

behavioral2

discoverypersistenceprivilege_escalation