Overview

overview

8

Static

static

1

Cultivatio...US.msi

windows7-x64

6

Cultivatio...US.msi

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    Cultivation_1.2.0_x64_en-US.msi

  • Size

    8.6MB

  • Sample

    240614-k9nxtstgqa

  • MD5

    38e0ca5dbb7a0db982cf104579f2c0a1

  • SHA1

    6618eb26703e0c0af3ea9e8228140a434e972e72

  • SHA256

    94cae41bb298670ed9ee521e5d894b85c85846e70562a6048078981f58246757

  • SHA512

    376359e899f018b5597d8272a31b442a647a822d35213a723f25ad1701d4ee7e68375279f3b36cd8eb8bc3d8ccd8bce6f176848588b7391350d6efa9f1a3487d

  • SSDEEP

    196608:vBrV3HQ3SR1egWKkPzkT5op8lLjqYoGNbg/tDhCFux4:5rVoSR/WKkrq5op8dTNbKtMFS

Score
8/10
execution

Malware Config

Targets

    • Target

      Cultivation_1.2.0_x64_en-US.msi

    • Size

      8.6MB

    • MD5

      38e0ca5dbb7a0db982cf104579f2c0a1

    • SHA1

      6618eb26703e0c0af3ea9e8228140a434e972e72

    • SHA256

      94cae41bb298670ed9ee521e5d894b85c85846e70562a6048078981f58246757

    • SHA512

      376359e899f018b5597d8272a31b442a647a822d35213a723f25ad1701d4ee7e68375279f3b36cd8eb8bc3d8ccd8bce6f176848588b7391350d6efa9f1a3487d

    • SSDEEP

      196608:vBrV3HQ3SR1egWKkPzkT5op8lLjqYoGNbg/tDhCFux4:5rVoSR/WKkrq5op8dTNbKtMFS

    Score
    8/10
    execution

    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

      execution

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks