3fb3b9450494dbdd8b97300b39cfec377e297b5139e2f46f92c6a8540bad1782 | Triage

Submit
Reports

Overview

overview

6

Static

static

1

CCA-Setup-3.5.4.msi

windows7-x64

6

CCA-Setup-3.5.4.msi

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

Target

CCA-Setup-3.5.4.msi
Size

87.3MB
Sample

240930-pm2mmavflr
MD5

3c7745fbaa8e58aae6ae9f02b7902972
SHA1

ef8b9c3c3d68ceb4b8830f03855b186619b31394
SHA256

3fb3b9450494dbdd8b97300b39cfec377e297b5139e2f46f92c6a8540bad1782
SHA512

b84269248f3f612939a50477453b2f3d82e572e7c8f0f59b3f4b3936c419bc3f52d527032a916579fcb2fd3f485aba57c85adc286e173861333103861c9c9422
SSDEEP

1572864:NLgavcUkK1c+FttPC9rUFdg4iUKESaCGBHog0i2HKZvY:Nkwc0t49QH0Nici2HKZvY

Score

6^/10

discovery persistence privilege_escalation

Static task

static1

Behavioral task

behavioral1

Sample

CCA-Setup-3.5.4.msi

Resource

win7-20240903-en

persistence privilege_escalation

windows7-x64

6 signatures

600 seconds

Behavioral task

behavioral2

Sample

CCA-Setup-3.5.4.msi

Resource

win10v2004-20240802-en

discovery persistence privilege_escalation

windows10-2004-x64

17 signatures

600 seconds

Malware Config

Targets

- Target
  
  CCA-Setup-3.5.4.msi
- Size
  
  87.3MB
- MD5
  
  3c7745fbaa8e58aae6ae9f02b7902972
- SHA1
  
  ef8b9c3c3d68ceb4b8830f03855b186619b31394
- SHA256
  
  3fb3b9450494dbdd8b97300b39cfec377e297b5139e2f46f92c6a8540bad1782
- SHA512
  
  b84269248f3f612939a50477453b2f3d82e572e7c8f0f59b3f4b3936c419bc3f52d527032a916579fcb2fd3f485aba57c85adc286e173861333103861c9c9422
- SSDEEP
  
  1572864:NLgavcUkK1c+FttPC9rUFdg4iUKESaCGBHog0i2HKZvY:Nkwc0t49QH0Nici2HKZvY
Score

6^/10

persistence privilege_escalation discovery
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Installer Packages

Privilege Escalation

Event Triggered Execution

Installer Packages

Defense Evasion

System Binary Proxy Execution

Msiexec

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistenceprivilege_escalation

behavioral2

discoverypersistenceprivilege_escalation

© 2018-2025

Terms | Privacy