Overview

overview

10

Static

static

10

C558B828.Png.msi

windows7-x64

6

C558B828.Png.msi

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    C558B828.Png.msi

  • Size

    1.4MB

  • Sample

    240422-dpd4kaeg56

  • MD5

    c12241be2c41ae69187ca9faf83494ff

  • SHA1

    5b1de649f2bc4eb08f1d83f7ea052de5b8fe141f

  • SHA256

    43eef76fa966395bde56b4e3812831ca75ad010e3b8216103358deb09bdc14d1

  • SHA512

    0b2dbf2278fef86a122952683668a795e76cb5e30c1d98b52f5fa5dbc9f1bc152c64aeeab69c9c4befd27ded3f879a3ebd9bc135c66e164d14ae5e8189c1b527

  • SSDEEP

    24576:FsuDXXNwG04BMeRocDP1NPQDhkPTG4Mcgiwkew8vroUQGDXDNSnf6BlMRUT:FVXdsi5ooAFeBRSw8vlQIzNSnf6y4

Score
10/10
purplefoxrootkit

Malware Config

Targets

    • Target

      C558B828.Png.msi

    • Size

      1.4MB

    • MD5

      c12241be2c41ae69187ca9faf83494ff

    • SHA1

      5b1de649f2bc4eb08f1d83f7ea052de5b8fe141f

    • SHA256

      43eef76fa966395bde56b4e3812831ca75ad010e3b8216103358deb09bdc14d1

    • SHA512

      0b2dbf2278fef86a122952683668a795e76cb5e30c1d98b52f5fa5dbc9f1bc152c64aeeab69c9c4befd27ded3f879a3ebd9bc135c66e164d14ae5e8189c1b527

    • SSDEEP

      24576:FsuDXXNwG04BMeRocDP1NPQDhkPTG4Mcgiwkew8vroUQGDXDNSnf6BlMRUT:FVXdsi5ooAFeBRSw8vlQIzNSnf6y4

    Score
    6/10

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks