Overview

overview

8

Static

static

1

Your File ...ad.msi

windows7-x64

8

Your File ...ad.msi

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Your File Is Ready To Download.msi

  • Size

    145.7MB

  • Sample

    230529-1zj4wsdg24

  • MD5

    d8d9d5a218acb598f92ab9685d1c5344

  • SHA1

    c94de4f5f9f35d26a19534e766255e947bce2f0d

  • SHA256

    1cf42260b929a471ee2f15c2a949c9192a76324f832dd71308114bd8f23a43d5

  • SHA512

    21948b3915440ef3eeee548baf2b19557826580bb92fe56413e1726fb10b3dbc23e77e35440a01d3159e5c290b8e004ebb0d4c411446bb975ec798e7b3e89d38

  • SSDEEP

    3145728:FkFpQJ/dwFcJTTuWQvCH5lX/zqb4ubILxAHUCMS/pKkWNT:FMpQJwcFKylvzsYxopKkW

Score
8/10

Malware Config

Targets

    • Target

      Your File Is Ready To Download.msi

    • Size

      145.7MB

    • MD5

      d8d9d5a218acb598f92ab9685d1c5344

    • SHA1

      c94de4f5f9f35d26a19534e766255e947bce2f0d

    • SHA256

      1cf42260b929a471ee2f15c2a949c9192a76324f832dd71308114bd8f23a43d5

    • SHA512

      21948b3915440ef3eeee548baf2b19557826580bb92fe56413e1726fb10b3dbc23e77e35440a01d3159e5c290b8e004ebb0d4c411446bb975ec798e7b3e89d38

    • SSDEEP

      3145728:FkFpQJ/dwFcJTTuWQvCH5lX/zqb4ubILxAHUCMS/pKkWNT:FMpQJwcFKylvzsYxopKkW

    Score
    8/10

    • Blocklisted process makes network request

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks