General

  • Target

    Security_Upgrade_Software_Win10.0.msi

  • Size

    96KB

  • Sample

    220427-xkbx7addbj

  • MD5

    997a3ae4006ae10c102258e5718f89f6

  • SHA1

    8177181273ace0f8009b809d866764ce266b70dc

  • SHA256

    d579e758e16f54d3c3594aa4fabce0181ef25bf953cceda3a6c47c099a77a40a

  • SHA512

    231cd1f692e56c0a5be5818ec77e786f0f4d6e58ea6d6c097574908e8f42e39e9b3f78c627a898e142e01b900865a6ef7988a803f12b72640d76c2ddfde44958

Score
8/10

Malware Config

Targets

    • Target

      Security_Upgrade_Software_Win10.0.msi

    • Size

      96KB

    • MD5

      997a3ae4006ae10c102258e5718f89f6

    • SHA1

      8177181273ace0f8009b809d866764ce266b70dc

    • SHA256

      d579e758e16f54d3c3594aa4fabce0181ef25bf953cceda3a6c47c099a77a40a

    • SHA512

      231cd1f692e56c0a5be5818ec77e786f0f4d6e58ea6d6c097574908e8f42e39e9b3f78c627a898e142e01b900865a6ef7988a803f12b72640d76c2ddfde44958

    Score
    8/10
    • Blocklisted process makes network request

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v6

Tasks