Overview

overview

8

Static

static

1

Nessus-10.6.1-x64.msi

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Nessus-10.6.1-x64.msi

  • Size

    99.6MB

  • Sample

    231006-hmjy9ahe6x

  • MD5

    65f09b26b7a6cf3e2a316b85c5644db5

  • SHA1

    c4f406307b1bfa3b6b8eb7113232bdcc29749b20

  • SHA256

    1a810082fe8a0866225dbc81e0bd6fc357221e52b57cb691dbfe0a4dd58ea847

  • SHA512

    5065185649efe08f872d41dabae018a8fab5fb036fb9d4210e8ab30a3224509b0ceecd03268c6db7b6732b3fb62125e81c9c3cfe3061175f6acffe74aa4f8d52

  • SSDEEP

    1572864:7wpYZKNG8xgSAzWrEkO5Zc8FwDUZCxzb6yCQ0VgbsM2Pg6kdMQ3WrsHLQAestuuy:pKo8xW5C/UZCxhLFbsjg/tGrMQ

Score
8/10
discovery

Malware Config

Targets

    • Target

      Nessus-10.6.1-x64.msi

    • Size

      99.6MB

    • MD5

      65f09b26b7a6cf3e2a316b85c5644db5

    • SHA1

      c4f406307b1bfa3b6b8eb7113232bdcc29749b20

    • SHA256

      1a810082fe8a0866225dbc81e0bd6fc357221e52b57cb691dbfe0a4dd58ea847

    • SHA512

      5065185649efe08f872d41dabae018a8fab5fb036fb9d4210e8ab30a3224509b0ceecd03268c6db7b6732b3fb62125e81c9c3cfe3061175f6acffe74aa4f8d52

    • SSDEEP

      1572864:7wpYZKNG8xgSAzWrEkO5Zc8FwDUZCxzb6yCQ0VgbsM2Pg6kdMQ3WrsHLQAestuuy:pKo8xW5C/UZCxhLFbsjg/tGrMQ

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies file permissions

      discovery

    • Blocklisted process makes network request

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks