32dde141635f641c25393d6662d176c706ccf7e51867bd4c487545258f3837cd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NovaLauncher_36670af72eb9bc6a61c993c6eeacacd0.msi
Size

7.1MB
Sample

240911-y1q8gs1ejf
MD5

36670af72eb9bc6a61c993c6eeacacd0
SHA1

936067db0c463f798b8fb8a966b2a9d146e7cdcc
SHA256

32dde141635f641c25393d6662d176c706ccf7e51867bd4c487545258f3837cd
SHA512

d6a56164c4a8a1525a93d1eb122f78a7afeda578a37b1d55893c9d3b5f99b7146f0d04351e367ab3bb72f177e9840a140d7aeddc5680eb2742c6db9da502d122
SSDEEP

196608:DOwNxYzN89zqPZdIan5hOJGihzny5lnFJGk:DBNxY48ZdIWIDd4J9

Score

6^/10

discovery persistence privilege_escalation

Malware Config

Targets

- Target
  
  NovaLauncher_36670af72eb9bc6a61c993c6eeacacd0.msi
- Size
  
  7.1MB
- MD5
  
  36670af72eb9bc6a61c993c6eeacacd0
- SHA1
  
  936067db0c463f798b8fb8a966b2a9d146e7cdcc
- SHA256
  
  32dde141635f641c25393d6662d176c706ccf7e51867bd4c487545258f3837cd
- SHA512
  
  d6a56164c4a8a1525a93d1eb122f78a7afeda578a37b1d55893c9d3b5f99b7146f0d04351e367ab3bb72f177e9840a140d7aeddc5680eb2742c6db9da502d122
- SSDEEP
  
  196608:DOwNxYzN89zqPZdIan5hOJGihzny5lnFJGk:DBNxY48ZdIWIDd4J9
Score

6^/10

discovery persistence privilege_escalation
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Installer Packages

Privilege Escalation

Event Triggered Execution

Installer Packages

Defense Evasion

System Binary Proxy Execution

Msiexec

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceprivilege_escalation