Overview

overview

7

Static

static

1

prtg_installer.exe

windows10-1703-x64

7

prtg_installer.exe

windows10-2004-x64

7

Resubmissions

23-03-2023 18:08

230323-wrdjxsbc7t 10

23-03-2023 17:40

230323-v81kcahb95 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    prtg_installer.exe

  • Size

    341.9MB

  • Sample

    230323-v81kcahb95

  • MD5

    3de61701ed11fc334ac81974a8151095

  • SHA1

    49cf1f4eb4fbde4388470b6ea8cf1fc0cb67889e

  • SHA256

    0dd1952b8ee8a56f77fba968366794bfa58abefc38151192d378eaf35607091f

  • SHA512

    b2a8d03585bcd1227f3a163d87f38c406722076709a7208eeb61e86fab5181e80230a538f37efb3786c5b1e475e10b7528d071aef8667f1aca0fab3564b0b63a

  • SSDEEP

    6291456:Komt7yD6gwdY0I2pUQKwFXfh9lAzooK+AwoEbt2iO/XhArMqs:dmtI6gwu0I2SXOh9lAzVAWERhGM

Score
7/10

Malware Config

Targets

    • Target

      prtg_installer.exe

    • Size

      341.9MB

    • MD5

      3de61701ed11fc334ac81974a8151095

    • SHA1

      49cf1f4eb4fbde4388470b6ea8cf1fc0cb67889e

    • SHA256

      0dd1952b8ee8a56f77fba968366794bfa58abefc38151192d378eaf35607091f

    • SHA512

      b2a8d03585bcd1227f3a163d87f38c406722076709a7208eeb61e86fab5181e80230a538f37efb3786c5b1e475e10b7528d071aef8667f1aca0fab3564b0b63a

    • SSDEEP

      6291456:Komt7yD6gwdY0I2pUQKwFXfh9lAzooK+AwoEbt2iO/XhArMqs:dmtI6gwu0I2SXOh9lAzVAWERhGM

    Score
    7/10

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

3
T1012

System Information Discovery

4
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks