Overview

overview

8

Static

static

1

Thsi One.zip

windows7-x64

1

Thsi One.zip

windows10-2004-x64

1

MSWUTL_V25700E.msi

windows7-x64

8

MSWUTL_V25700E.msi

windows10-2004-x64

8

Resubmissions

13-04-2023 18:33

230413-w6723sdd37 8

13-04-2023 18:16

230413-wwy2esdc55 8

13-04-2023 18:14

230413-wvax7see6v 8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Thsi One.zip

  • Size

    6.7MB

  • Sample

    230413-wwy2esdc55

  • MD5

    797effeb52e5b73241d9faa8501d710c

  • SHA1

    454325f82ec93f25a43f61fab03b3f6ee8dc9c86

  • SHA256

    d4d7b0f79cfb1052782248f2318cbe739581938f67124ef8d378f838fd3ebd71

  • SHA512

    776fbffd300435283adc0de8a6c9418faa1041128cfdbe4bc5c47e4ebb399d53ef986f535b43a6677cf4b019ca65642e003bd1892643d84ff931bb7c95f4716d

  • SSDEEP

    196608:0BfbGHn54Ext/2jMcL2ftA7zQOzyZoJzOB5k0soEmg/pa/:0Bf6HWELejMcL2ft2QRqUCtoEmgE

Score
8/10

Malware Config

Targets

    • Target

      Thsi One.zip

    • Size

      6.7MB

    • MD5

      797effeb52e5b73241d9faa8501d710c

    • SHA1

      454325f82ec93f25a43f61fab03b3f6ee8dc9c86

    • SHA256

      d4d7b0f79cfb1052782248f2318cbe739581938f67124ef8d378f838fd3ebd71

    • SHA512

      776fbffd300435283adc0de8a6c9418faa1041128cfdbe4bc5c47e4ebb399d53ef986f535b43a6677cf4b019ca65642e003bd1892643d84ff931bb7c95f4716d

    • SSDEEP

      196608:0BfbGHn54Ext/2jMcL2ftA7zQOzyZoJzOB5k0soEmg/pa/:0Bf6HWELejMcL2ft2QRqUCtoEmgE

    Score
    1/10
    behavioral1behavioral2

    • Target

      MSWUTL_V25700E.msi

    • Size

      6.9MB

    • MD5

      ef8fc6a5e66fc374c8fe0f232a55dc1d

    • SHA1

      f8c65370d84fda8852b3bac8ccd37262c42ad984

    • SHA256

      e377551388878b2ba2d5540cd2e8c0f718cbd5e66855d83b32555f1123c0acd2

    • SHA512

      ebc33b3a4b1aecb596afab993fc39066a7d4b25af3eb1e1702cf03e00fbabbba29f3e283f32797bf69701033a4811a68a5fe293c8cbc75e3b996a5f983319a2d

    • SSDEEP

      196608:DALAb45mVd+EOa3SlqG5whkNVAT+aJK5Adzhqgm8WDGt:DALAk5mOERClqG5whuI+MdpvWDG

    Score
    8/10

    • Blocklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral3behavioral4

MITRE ATT&CK Enterprise v6

Tasks