General
-
Target
PDFCreator-Professional-5_0_3_48776-Setup_x64.msi
-
Size
197.9MB
-
Sample
230111-n96dnaca25
-
MD5
72c5e33e457ce9ec10a9f48bfb9887c7
-
SHA1
4dae8a29b967a8dafbb2d1c3b3cde0d730590bd9
-
SHA256
f7cf17958727e61777c19f6f0c4f2c6c494996d8163c53c2c66a5aada363f581
-
SHA512
9a2d6b81bfd4704bae5e3cb85d43d4e4a4c4fc90b5af51e75523d9cec3a3eede59305eee43226b83a2b51ad20e2900da81dcbc6ae9ef8494d9823e58a2cfb7a8
-
SSDEEP
3145728:6HwJVH7l8A83c50lM/VXBWZuhuzKL7co:6QzZ0lMtt
Malware Config
Targets
-
-
Target
PDFCreator-Professional-5_0_3_48776-Setup_x64.msi
-
Size
197.9MB
-
MD5
72c5e33e457ce9ec10a9f48bfb9887c7
-
SHA1
4dae8a29b967a8dafbb2d1c3b3cde0d730590bd9
-
SHA256
f7cf17958727e61777c19f6f0c4f2c6c494996d8163c53c2c66a5aada363f581
-
SHA512
9a2d6b81bfd4704bae5e3cb85d43d4e4a4c4fc90b5af51e75523d9cec3a3eede59305eee43226b83a2b51ad20e2900da81dcbc6ae9ef8494d9823e58a2cfb7a8
-
SSDEEP
3145728:6HwJVH7l8A83c50lM/VXBWZuhuzKL7co:6QzZ0lMtt
Score8/10-
Blocklisted process makes network request
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-