General

  • Target

    plugin-Cartable-Fantastique_setup_MSO365.exe

  • Size

    10.3MB

  • Sample

    241110-16y7dsxame

  • MD5

    28d644a81e99cd30f40a7b2514c4670c

  • SHA1

    28887cad02ac3d44fa6a6c6e5dbb2f5ac013c86b

  • SHA256

    5a750a89307ddd62296b2cd628f35fea7c031ddf93d5e5461a50b25537c04618

  • SHA512

    3cd6c7359121dfb0dd84be811d39208a10affcb31c7c617af812a7bf1f07908e9314142f7cfa6454105c092314e56e59e05f226f0b7383e52ea0cbe5b19c8b31

  • SSDEEP

    196608:Z3K9DfSQqiJR1dp8B0XQFtmDbB/umqveKBS+9B4BjSbJ+dV35r/sM8Tg/v:ZWLJqiJDYBsQO8JBlyBjnpLs7I

Score
8/10

Malware Config

Targets

    • Target

      plugin-Cartable-Fantastique_setup_MSO365.exe

    • Size

      10.3MB

    • MD5

      28d644a81e99cd30f40a7b2514c4670c

    • SHA1

      28887cad02ac3d44fa6a6c6e5dbb2f5ac013c86b

    • SHA256

      5a750a89307ddd62296b2cd628f35fea7c031ddf93d5e5461a50b25537c04618

    • SHA512

      3cd6c7359121dfb0dd84be811d39208a10affcb31c7c617af812a7bf1f07908e9314142f7cfa6454105c092314e56e59e05f226f0b7383e52ea0cbe5b19c8b31

    • SSDEEP

      196608:Z3K9DfSQqiJR1dp8B0XQFtmDbB/umqveKBS+9B4BjSbJ+dV35r/sM8Tg/v:ZWLJqiJDYBsQO8JBlyBjnpLs7I

    Score
    8/10
    • Blocklisted process makes network request

    • Drops startup file

    • Executes dropped EXE

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks