Overview

overview

8

Static

static

4

masterCONF...07.pdf

windows7_x64

1

masterCONF...07.pdf

windows10-2004_x64

1

masterCONF...07.exe

windows7_x64

8

masterCONF...07.exe

windows10-2004_x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    masterCONFIGURATOR_V216.zip

  • Size

    24.9MB

  • Sample

    220407-npw99afea5

  • MD5

    07f8d031442156066277b0838e08b139

  • SHA1

    9d0c3e77cf605d382ee167675e091f0cfcc64e6c

  • SHA256

    4e391f6288ee119660df3a6dcd7c817673ad59b31f5123c24477b4edc16b2508

  • SHA512

    3efab934df43f394108e44f15a665822ba308b448a1fb63e2c30d5f141bf016c2fafa7ba005b0fbd1ab620153f1a2e93a46cd1e140c11309650e9bc0084384a9

Score
8/10
discoverylinkpdf

Malware Config

Targets

    • Target

      masterCONFIGURATOR_v2.16.0.1407/Release_Note_masterCONFIGURATOR V2.16.0.1407.pdf

    • Size

      172KB

    • MD5

      06bed4aafb76643794f4006506b46ea8

    • SHA1

      190c76f62b8308102c0d01e1671fb9984998a190

    • SHA256

      bab2c72d3a27165677bdf7ee45baa5055d2c046a60514113f312f055e895bcc7

    • SHA512

      bbb563ec2f64a940997589aec7ccda1d298ec74d2cc075ab9372d111ac6fbf59d19867f2e5f1bedea3d9cf19351212d252611f531e4f46e60f9795dc24ea750e

    Score
    1/10
    behavioral1behavioral2

    • Target

      masterCONFIGURATOR_v2.16.0.1407/masterCONFIGURATOR_v2.16.0.1407.exe

    • Size

      24.8MB

    • MD5

      c68242aef3fcb3c3026558da41a81e9f

    • SHA1

      a75f12a5478017257a2efc19255b083d665f3253

    • SHA256

      2d0317b2fd26072119aa48686918f6314c730af415074633dc54e3df57db38aa

    • SHA512

      f1a10f16b5845eb107a80e60cdc81d67e4f6f6440c66ac1b767b1a7eb1eef720e16be8b5a0e2ce634de52898caf0d3d3f0d285dc0b32f84b5cc38a68ab8749f0

    Score
    8/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral3behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks