Overview

overview

7

Static

static

1

Windows11I...nt.exe

windows11-21h2-x64

7

Resubmissions

26-03-2024 18:06

240326-wp3q2abd3x 7

26-03-2024 18:03

240326-wm9rkagd26 7

26-03-2024 01:20

240326-bp4ywabc43 7

25-03-2024 20:21

240325-y5dsysbf7y 7

25-03-2024 20:21

240325-y47dwabf7w 1

25-03-2024 20:20

240325-y4vp3sgh74 1

25-03-2024 18:59

240325-xnhvxaaf41 1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Windows11InstallationAssistant.exe

  • Size

    4.0MB

  • Sample

    240326-wm9rkagd26

  • MD5

    9efe0c8b7f96c1a7d5bdd52bf07d009d

  • SHA1

    dc6ff2f1c0af472cdc81b05f876c10420a6bbb78

  • SHA256

    03a9b3163071ecb41e20b95eb664c3165b9fcaba89f5e5433484d65e8cfa0380

  • SHA512

    b66772e1faeff8c607b6624106530945997fe2105569cbf92cf0eaa31f7bd02ed46b74bae6e9d79b6f51da76445564ed73fe9eb2a6507e3ce5d543781ba227fb

  • SSDEEP

    98304:Fguv/rctyMh4cCE3p8fuCNCzLX/sA2uQqvAVGht5f/LyXtcH//9:SVtyMh9CVPUDk+4QjyXa

Score
7/10
microsoftdiscoveryphishing

Malware Config

Targets

    • Target

      Windows11InstallationAssistant.exe

    • Size

      4.0MB

    • MD5

      9efe0c8b7f96c1a7d5bdd52bf07d009d

    • SHA1

      dc6ff2f1c0af472cdc81b05f876c10420a6bbb78

    • SHA256

      03a9b3163071ecb41e20b95eb664c3165b9fcaba89f5e5433484d65e8cfa0380

    • SHA512

      b66772e1faeff8c607b6624106530945997fe2105569cbf92cf0eaa31f7bd02ed46b74bae6e9d79b6f51da76445564ed73fe9eb2a6507e3ce5d543781ba227fb

    • SSDEEP

      98304:Fguv/rctyMh4cCE3p8fuCNCzLX/sA2uQqvAVGht5f/LyXtcH//9:SVtyMh9CVPUDk+4QjyXa

    Score
    7/10
    microsoftdiscoveryphishing

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Detected potential entity reuse from brand microsoft.

      phishingmicrosoft
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks