Overview

overview

7

Static

static

3

MantiWPFInstaller.exe

windows7-x64

3

MantiWPFInstaller.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    MantiWPFInstaller.exe

  • Size

    3.0MB

  • Sample

    240727-2xh99ashnk

  • MD5

    92088697615d0b0ae6460330bece6954

  • SHA1

    37619cc60009a834c60fe078499aec32626d20b2

  • SHA256

    cb734ed36b7ec0d5c8677c9c8788bf859766e7d12ff3ca4a11a915dc27d21d83

  • SHA512

    4f89aeb4c22e4557a35bb52af64fa654ab246107be6fb47e4bffefde4f17776843b8240ecad38bb50d042e47ab41366492ac92d5c4eee2d63ad2528ba17aba46

  • SSDEEP

    24576:MNgyNilNR2zTJF2ZHuduTJTyCA59q0aSeQyW72/JW363Qf0ukHe7cOZj:0gizdwlyCA59qRSnh2/0se7cOt

Score
7/10
discovery

Malware Config

Targets

    • Target

      MantiWPFInstaller.exe

    • Size

      3.0MB

    • MD5

      92088697615d0b0ae6460330bece6954

    • SHA1

      37619cc60009a834c60fe078499aec32626d20b2

    • SHA256

      cb734ed36b7ec0d5c8677c9c8788bf859766e7d12ff3ca4a11a915dc27d21d83

    • SHA512

      4f89aeb4c22e4557a35bb52af64fa654ab246107be6fb47e4bffefde4f17776843b8240ecad38bb50d042e47ab41366492ac92d5c4eee2d63ad2528ba17aba46

    • SSDEEP

      24576:MNgyNilNR2zTJF2ZHuduTJTyCA59q0aSeQyW72/JW363Qf0ukHe7cOZj:0gizdwlyCA59qRSnh2/0se7cOt

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks