Overview

overview

8

Static

static

1

OutlookMUI.msi

windows7-x64

7

OutlookMUI.msi

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    OutlookMUI.msi

  • Size

    2.0MB

  • Sample

    230615-qeg4pahc39

  • MD5

    bf4b5a360f8c2d4f693305e06ad3e328

  • SHA1

    04207a2547a12911a04f5e8a185f7f76e738dbc5

  • SHA256

    cf03e5d8433522680ac8acdd590ba95172a9b2534fd895c82d442b1d49e32483

  • SHA512

    966b37b6ad9116ee1693ed35c2cdbdcc88af426d281bb8f99240ffb1bdaac6e12faff53e124fc8a8dcf82dcd5cbc76dc5e78a2e8fe1f06e30bcb41c96f7ba0e1

  • SSDEEP

    49152:3wzVWF0z2Zu2oHMfyyWfDT2dBHsp53dqCmNzc:3wzQMeuNyWfDT2dBHy

Score
8/10

Malware Config

Targets

    • Target

      OutlookMUI.msi

    • Size

      2.0MB

    • MD5

      bf4b5a360f8c2d4f693305e06ad3e328

    • SHA1

      04207a2547a12911a04f5e8a185f7f76e738dbc5

    • SHA256

      cf03e5d8433522680ac8acdd590ba95172a9b2534fd895c82d442b1d49e32483

    • SHA512

      966b37b6ad9116ee1693ed35c2cdbdcc88af426d281bb8f99240ffb1bdaac6e12faff53e124fc8a8dcf82dcd5cbc76dc5e78a2e8fe1f06e30bcb41c96f7ba0e1

    • SSDEEP

      49152:3wzVWF0z2Zu2oHMfyyWfDT2dBHsp53dqCmNzc:3wzQMeuNyWfDT2dBHy

    Score
    8/10

    • Blocklisted process makes network request

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks