Overview

overview

6

Static

static

1

EpicInstal...1).msi

windows11-21h2-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    EpicInstaller-15.17.1 (1).msi

  • Size

    176.5MB

  • Sample

    240521-rxbkashd5v

  • MD5

    7a2cf04ac0c504a8ea5aed805dde484d

  • SHA1

    0536d7a178d1a42cea1476ea6b44bc53ed26bc63

  • SHA256

    6f3f486d7a8409fc174198818c039152c6268bd9fdf210ee6be1c91bf832b7e9

  • SHA512

    42aeed1d015ab279df3065e04adff8001672a13180f4d73121ace3bc8989783f12c7a5d0b50c684c74fd138fc1b4f451439acd7b6342d4f60c7d3a18034e0988

  • SSDEEP

    3145728:oyKHxXZR5bsPL+buxE4ynkX+kKbtt3V8mIeDLhZ8muXNNE7byK88OmTZbOW/rXi:IP4PAwUnkuk8BNbLIxg7bUQ

Score
6/10

Malware Config

Targets

    • Target

      EpicInstaller-15.17.1 (1).msi

    • Size

      176.5MB

    • MD5

      7a2cf04ac0c504a8ea5aed805dde484d

    • SHA1

      0536d7a178d1a42cea1476ea6b44bc53ed26bc63

    • SHA256

      6f3f486d7a8409fc174198818c039152c6268bd9fdf210ee6be1c91bf832b7e9

    • SHA512

      42aeed1d015ab279df3065e04adff8001672a13180f4d73121ace3bc8989783f12c7a5d0b50c684c74fd138fc1b4f451439acd7b6342d4f60c7d3a18034e0988

    • SSDEEP

      3145728:oyKHxXZR5bsPL+buxE4ynkX+kKbtt3V8mIeDLhZ8muXNNE7byK88OmTZbOW/rXi:IP4PAwUnkuk8BNbLIxg7bUQ

    Score
    6/10

    • Blocklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks