c4c57358c968e86c8978b2759353bf28e042faa54b3065c7f016c1dc39760b77 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SPSS_Statistics_22_win64.exe
Size

774.5MB
Sample

240929-wajdvaxdjb
MD5

490f47f1e1a20469e499c7a75aac4385
SHA1

4ef5857000f97a07fb55788bec72d673963b462f
SHA256

c4c57358c968e86c8978b2759353bf28e042faa54b3065c7f016c1dc39760b77
SHA512

7cfb5907a44d137bfd61f14747b0e17538e046efa95a50ab1aef9aa62bfcd6aa969251f371efbba6f27ddabad3786ddb9ee6be5d2bba524cb8e8d0260b6fcf8f
SSDEEP

25165824:vK2SQZxrKJGAar0ak3Fb8+oXmvBVY4s45hF:vwQkGAaIt3FbNo25Vv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  SPSS_Statistics_22_win64.exe
- Size
  
  774.5MB
- MD5
  
  490f47f1e1a20469e499c7a75aac4385
- SHA1
  
  4ef5857000f97a07fb55788bec72d673963b462f
- SHA256
  
  c4c57358c968e86c8978b2759353bf28e042faa54b3065c7f016c1dc39760b77
- SHA512
  
  7cfb5907a44d137bfd61f14747b0e17538e046efa95a50ab1aef9aa62bfcd6aa969251f371efbba6f27ddabad3786ddb9ee6be5d2bba524cb8e8d0260b6fcf8f
- SSDEEP
  
  25165824:vK2SQZxrKJGAar0ak3Fb8+oXmvBVY4s45hF:vwQkGAaIt3FbNo25Vv
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2