General

  • Target

    cisa.msi

  • Size

    1.5MB

  • Sample

    240311-s7fsfaaf53

  • MD5

    c4e8f3e02fd50a4051f11048f1355726

  • SHA1

    c82bf39c9f4797f346447aecc1070fb8c892010f

  • SHA256

    3a950d7e6736f17c3df90844c76d934dc66c17ec76841a4ad58de07af7955f0f

  • SHA512

    e44d8330c4ffdae01614ed5d11c2f112cff9b39bae793242f983d039e1404d371a2697a77fa65b740e43548ab1b203607a6d82b05ff3df741be02bd99a136592

  • SSDEEP

    24576:QjGxLNvYLSMvZCFlp8zBQSc0ZoCvqKwx0ECIgYmfLVYeBZr7A0r7Jh3OnJ3qXIoj:QjivYpW8zBQSc0ZnSKeZKumZr7A+D3O2

Score
8/10

Malware Config

Targets

    • Target

      cisa.msi

    • Size

      1.5MB

    • MD5

      c4e8f3e02fd50a4051f11048f1355726

    • SHA1

      c82bf39c9f4797f346447aecc1070fb8c892010f

    • SHA256

      3a950d7e6736f17c3df90844c76d934dc66c17ec76841a4ad58de07af7955f0f

    • SHA512

      e44d8330c4ffdae01614ed5d11c2f112cff9b39bae793242f983d039e1404d371a2697a77fa65b740e43548ab1b203607a6d82b05ff3df741be02bd99a136592

    • SSDEEP

      24576:QjGxLNvYLSMvZCFlp8zBQSc0ZoCvqKwx0ECIgYmfLVYeBZr7A0r7Jh3OnJ3qXIoj:QjivYpW8zBQSc0ZnSKeZKumZr7A+D3O2

    Score
    8/10
    • Blocklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks