Overview

overview

8

Static

static

3

wikiloader...ed.pdf

windows10-1703-x64

8

Resubmissions

14/07/2023, 18:11

230714-wsqwmsff84 8

14/07/2023, 17:44

230714-wbegaaff62 4

Sharing

Copy URL Twitter E-mail

General

  • Target

    wikiloader_infected.pdf

  • Size

    85KB

  • Sample

    230714-wsqwmsff84

  • MD5

    1331131d07f9172ba06bc507cf18bbf0

  • SHA1

    107f23a22c983e5871c4f5a52fb95b3b75b367da

  • SHA256

    d49c2e47c8e14cc01f0a362293c613ea9604e532ff77b879d69895473dfbeb03

  • SHA512

    3cd34233c3a8439ce547f352c67596d383c7ba474a530e2e650a34a4bcee295466709f412338e97c10395eadf538fc7bbd03b66f8bec06028cf7f6e52b1de4a2

  • SSDEEP

    1536:PV9lTZJ2JIbfD224gVprvCJNiN/s9y53p+jZAy91TYTVv4:99RZJXfKwQNiNhmq81YC

Score
8/10
linkpdfpersistence

Malware Config

Targets

    • Target

      wikiloader_infected.pdf

    • Size

      85KB

    • MD5

      1331131d07f9172ba06bc507cf18bbf0

    • SHA1

      107f23a22c983e5871c4f5a52fb95b3b75b367da

    • SHA256

      d49c2e47c8e14cc01f0a362293c613ea9604e532ff77b879d69895473dfbeb03

    • SHA512

      3cd34233c3a8439ce547f352c67596d383c7ba474a530e2e650a34a4bcee295466709f412338e97c10395eadf538fc7bbd03b66f8bec06028cf7f6e52b1de4a2

    • SSDEEP

      1536:PV9lTZJ2JIbfD224gVprvCJNiN/s9y53p+jZAy91TYTVv4:99RZJXfKwQNiNhmq81YC

    Score
    8/10
    persistence

    • Modifies Installed Components in the registry

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks