Overview

overview

7

Static

static

1

mysql-conn...28.msi

windows10-1703-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    mysql-connector-net-8.0.28.msi

  • Size

    12.0MB

  • Sample

    240124-dxkw3shdh9

  • MD5

    dd68536f1b81018020bfc0773f09a8c0

  • SHA1

    b1a6db7e8277611ad7b6642c9c5bf5cff44efa1d

  • SHA256

    0231d66ea3d4e691805a26d605ea49f92b385661f3ca55a63c1dcdeaeebae1f1

  • SHA512

    1116632d37dbae9c3a5488cf68d330f8f932d98920f011c21715a22af441320d4bba34e93026b33b9bd59850bfb100d3854eafa128e767444c59c1328bd60a95

  • SSDEEP

    196608:T66HvGmy2pYxZ45OlZKuQjApG4bb4zvtTCzwlpEtRms70jHA0zhZ8PW:T66Omy2CNl6jApG4bb4jtTG3mM0jpi+

Score
7/10

Malware Config

Targets

    • Target

      mysql-connector-net-8.0.28.msi

    • Size

      12.0MB

    • MD5

      dd68536f1b81018020bfc0773f09a8c0

    • SHA1

      b1a6db7e8277611ad7b6642c9c5bf5cff44efa1d

    • SHA256

      0231d66ea3d4e691805a26d605ea49f92b385661f3ca55a63c1dcdeaeebae1f1

    • SHA512

      1116632d37dbae9c3a5488cf68d330f8f932d98920f011c21715a22af441320d4bba34e93026b33b9bd59850bfb100d3854eafa128e767444c59c1328bd60a95

    • SSDEEP

      196608:T66HvGmy2pYxZ45OlZKuQjApG4bb4zvtTCzwlpEtRms70jHA0zhZ8PW:T66Omy2CNl6jApG4bb4jtTG3mM0jpi+

    Score
    7/10

    • Loads dropped DLL

    • Blocklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks