Overview

overview

10

Static

static

10

935ab70c44...de.msi

windows7_x64

8

935ab70c44...de.msi

windows10-2004_x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    935ab70c4491c20d13375153dd538eb38533a014afce4aaf677fc782a1be05de

  • Size

    382KB

  • Sample

    220205-pzb8habdg4

  • MD5

    f78c641a6a767a373ed4d4377097fe68

  • SHA1

    f99c0d358dffa674aeb9cd3bb68d17668f1c0750

  • SHA256

    935ab70c4491c20d13375153dd538eb38533a014afce4aaf677fc782a1be05de

  • SHA512

    9cd7c171591dc21c140fef632c8ec702a0a4dbb46922d83f434f6c68382fd3ddb8e2ce058174df583781fc4fae29e6b0d7539f30983eef9b12b1e583a4534ee7

Score
10/10
ratty

Malware Config

Targets

    • Target

      935ab70c4491c20d13375153dd538eb38533a014afce4aaf677fc782a1be05de

    • Size

      382KB

    • MD5

      f78c641a6a767a373ed4d4377097fe68

    • SHA1

      f99c0d358dffa674aeb9cd3bb68d17668f1c0750

    • SHA256

      935ab70c4491c20d13375153dd538eb38533a014afce4aaf677fc782a1be05de

    • SHA512

      9cd7c171591dc21c140fef632c8ec702a0a4dbb46922d83f434f6c68382fd3ddb8e2ce058174df583781fc4fae29e6b0d7539f30983eef9b12b1e583a4534ee7

    Score
    8/10

    • Blocklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks