Overview

overview

8

Static

static

194e334039...be.msi

windows7-x64

8

194e334039...be.msi

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    194e334039c0fbbdc574ccae592042b2699814912ac2053f5e0aacf5d0fd44be

  • Size

    100.8MB

  • Sample

    220929-ptc8lsagf6

  • MD5

    7d97d8d7556272f7199e25bbff076cfb

  • SHA1

    2325a09a83f0855aaecc8da00b2c316dac03ad0f

  • SHA256

    194e334039c0fbbdc574ccae592042b2699814912ac2053f5e0aacf5d0fd44be

  • SHA512

    4639c796551a44bf49b3f13a06b86d99b7956c56423987eeb636e471afb95edbcff351ea3ae6c86f48cfd7e81eafdb9e4a939c394b33619cf95836b590d04589

  • SSDEEP

    3145728:RFEp1cAjJNOCsXvY27nm0LT419R/pt8OBpt:m7FfknLdTC9R/piqt

Score
8/10

Malware Config

Targets

    • Target

      194e334039c0fbbdc574ccae592042b2699814912ac2053f5e0aacf5d0fd44be

    • Size

      100.8MB

    • MD5

      7d97d8d7556272f7199e25bbff076cfb

    • SHA1

      2325a09a83f0855aaecc8da00b2c316dac03ad0f

    • SHA256

      194e334039c0fbbdc574ccae592042b2699814912ac2053f5e0aacf5d0fd44be

    • SHA512

      4639c796551a44bf49b3f13a06b86d99b7956c56423987eeb636e471afb95edbcff351ea3ae6c86f48cfd7e81eafdb9e4a939c394b33619cf95836b590d04589

    • SSDEEP

      3145728:RFEp1cAjJNOCsXvY27nm0LT419R/pt8OBpt:m7FfknLdTC9R/piqt

    Score
    8/10

    • Blocklisted process makes network request

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks