316ac903eb6463344dab860eed25d6f30f506542f06d63c7afd1bd6e58486f44 | Triage

Sharing

General

Target

FreshPaper_0.0.5_x64_en-US.msi
Size

3.3MB
Sample

240628-y7feka1dke
MD5

7161d8cdd0f0e7bbefa15222518b9c47
SHA1

4fb217b3e4afd8b7de1a3c82be9de48e6503164b
SHA256

316ac903eb6463344dab860eed25d6f30f506542f06d63c7afd1bd6e58486f44
SHA512

6e940db13c2b0a669404986be0151ba44dc4e6cb3fe949fdebd2a489211e9888b40f5b67ccd8e4660e484e0d9326d383860eb5d8b4cc223e25d260f3b3425ddb
SSDEEP

98304:A4VgEElcYKLI45Ps3N9gd5SD08Pi+Dvr:AuclcYK045PyqSgN+

Score

6^/10

persistence privilege_escalation

Malware Config

Targets

- Target
  
  FreshPaper_0.0.5_x64_en-US.msi
- Size
  
  3.3MB
- MD5
  
  7161d8cdd0f0e7bbefa15222518b9c47
- SHA1
  
  4fb217b3e4afd8b7de1a3c82be9de48e6503164b
- SHA256
  
  316ac903eb6463344dab860eed25d6f30f506542f06d63c7afd1bd6e58486f44
- SHA512
  
  6e940db13c2b0a669404986be0151ba44dc4e6cb3fe949fdebd2a489211e9888b40f5b67ccd8e4660e484e0d9326d383860eb5d8b4cc223e25d260f3b3425ddb
- SSDEEP
  
  98304:A4VgEElcYKLI45Ps3N9gd5SD08Pi+Dvr:AuclcYK045PyqSgN+
Score

6^/10

persistence privilege_escalation
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Installer Packages

Privilege Escalation

Event Triggered Execution

Installer Packages

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistenceprivilege_escalation

behavioral2

persistenceprivilege_escalation