Overview

overview

6

Static

static

1

i.msi

windows7-x64

6

i.msi

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    i.msi

  • Size

    28.2MB

  • Sample

    241106-3ms75s1cpr

  • MD5

    adad9dc1c3a779bc9f189dcaad4f3736

  • SHA1

    09b4530a586478183a6ec47bf931593ac6368777

  • SHA256

    be2f50d49e8eb863aa3e4aa47c414beffdd6b126837dadf40483de0f2ef254d8

  • SHA512

    8b077ae6512e2edf8d957cfb807a24e0038560d997862f65ed5ccd6998ac58ab4c943c8af42d1b166edce8523223786136ba80f2e6c3221e4274406e3dae1120

  • SSDEEP

    786432:fmjD4lNUa68C1NpRojPmJsUQOIe/oyUFvpOBsB0Qe:fLHUrR1NpRozmJsUue/TUbe

Score
6/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      i.msi

    • Size

      28.2MB

    • MD5

      adad9dc1c3a779bc9f189dcaad4f3736

    • SHA1

      09b4530a586478183a6ec47bf931593ac6368777

    • SHA256

      be2f50d49e8eb863aa3e4aa47c414beffdd6b126837dadf40483de0f2ef254d8

    • SHA512

      8b077ae6512e2edf8d957cfb807a24e0038560d997862f65ed5ccd6998ac58ab4c943c8af42d1b166edce8523223786136ba80f2e6c3221e4274406e3dae1120

    • SSDEEP

      786432:fmjD4lNUa68C1NpRojPmJsUQOIe/oyUFvpOBsB0Qe:fLHUrR1NpRozmJsUue/TUbe

    Score
    6/10
    discoverypersistenceprivilege_escalation

    • Blocklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks