734a36a2ebc369e8b681969eb810e72d865ee655d66fc1d1aefe731ee52903ad | Triage

Sharing

General

Target

TopazVideoAI-5.3.2.msi
Size

676.3MB
Sample

240927-v9p51avhlc
MD5

30bf2d9d8c4a774a90a24df0ac9f5a07
SHA1

06404b151a62c354e6833e4d3d330ba0e4f0d645
SHA256

734a36a2ebc369e8b681969eb810e72d865ee655d66fc1d1aefe731ee52903ad
SHA512

21ea49b41052e3082054ae34aae71347b2e1d8eab387457784ed602dcc487bd1e9bc6fa6b9707543b43a23f85e8ab6d8a7e6c6f5f8015552a3551d65fdbc99f6
SSDEEP

12582912:jfOZ6zed5FiFigKTZ51caSElTXynnEuBzgUc6UF6TDXuGTDZixfBMlPQJBo9zjCu:yDd5FuWTzClKGnEuVc6UUTD+GTdiMlPV

Score

6^/10

discovery persistence privilege_escalation

Malware Config

Targets

- Target
  
  TopazVideoAI-5.3.2.msi
- Size
  
  676.3MB
- MD5
  
  30bf2d9d8c4a774a90a24df0ac9f5a07
- SHA1
  
  06404b151a62c354e6833e4d3d330ba0e4f0d645
- SHA256
  
  734a36a2ebc369e8b681969eb810e72d865ee655d66fc1d1aefe731ee52903ad
- SHA512
  
  21ea49b41052e3082054ae34aae71347b2e1d8eab387457784ed602dcc487bd1e9bc6fa6b9707543b43a23f85e8ab6d8a7e6c6f5f8015552a3551d65fdbc99f6
- SSDEEP
  
  12582912:jfOZ6zed5FiFigKTZ51caSElTXynnEuBzgUc6UF6TDXuGTDZixfBMlPQJBo9zjCu:yDd5FuWTzClKGnEuVc6UUTD+GTdiMlPV
Score

6^/10

discovery persistence privilege_escalation
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Installer Packages

Privilege Escalation

Event Triggered Execution

Installer Packages

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

System Binary Proxy Execution

Msiexec

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceprivilege_escalation