Overview

overview

9

Static

static

1

610588106a...55.msi

windows7-x64

9

610588106a...55.msi

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    610588106ae1a4529d1caf69d8b4ff61d0ab6a6f4e44caf51ad0ff46db3d4e55.msi

  • Size

    4.3MB

  • Sample

    240509-bzglbsbb5y

  • MD5

    427d9c0f58114ac6aa4d709d4d7b98d5

  • SHA1

    f3fb0ff04c9ab956e5b8ebb0ef250b63110c020d

  • SHA256

    610588106ae1a4529d1caf69d8b4ff61d0ab6a6f4e44caf51ad0ff46db3d4e55

  • SHA512

    b6a4888537897f88cc5db724b3d4a352e62b2fb9a2df60b1eef5892e2e7c96f8540a8fb9b0fb54fc71e5c67a1992204c62cf7a91f94c25d7a44d4ffffddbe22c

  • SSDEEP

    98304:ZLY8tM4AUdK0DBUqvzCjVaiNlliHE7BemmTp7SgGchbyhYv5Jvw1lVPLC70z0Do9:59dK0tVvzcVnIHEMtTicEhC55wPVPnz1

Score
9/10

Malware Config

Targets

    • Target

      610588106ae1a4529d1caf69d8b4ff61d0ab6a6f4e44caf51ad0ff46db3d4e55.msi

    • Size

      4.3MB

    • MD5

      427d9c0f58114ac6aa4d709d4d7b98d5

    • SHA1

      f3fb0ff04c9ab956e5b8ebb0ef250b63110c020d

    • SHA256

      610588106ae1a4529d1caf69d8b4ff61d0ab6a6f4e44caf51ad0ff46db3d4e55

    • SHA512

      b6a4888537897f88cc5db724b3d4a352e62b2fb9a2df60b1eef5892e2e7c96f8540a8fb9b0fb54fc71e5c67a1992204c62cf7a91f94c25d7a44d4ffffddbe22c

    • SSDEEP

      98304:ZLY8tM4AUdK0DBUqvzCjVaiNlliHE7BemmTp7SgGchbyhYv5Jvw1lVPLC70z0Do9:59dK0tVvzcVnIHEMtTicEhC55wPVPnz1

    Score
    9/10

    • Detects executables manipulated with Fody

    • Drops startup file

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks