Overview

overview

8

Static

static

1

merd.msi

windows7-x64

8

merd.msi

windows10-2004-x64

8

Resubmissions

20-11-2024 06:31

241120-hahknatdnl 10

19-11-2024 21:38

241119-1hfedatfnn 8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    merd.msi

  • Size

    2.0MB

  • Sample

    241119-1hfedatfnn

  • MD5

    309abcad11b67d2498cf87c4e10ff30f

  • SHA1

    0d805a684b889846a7b00cecc0ee84c7cf93398d

  • SHA256

    c39abdca1a31b20fe06969a36102c784df7f63847ec930dfaf8c4bd97b4558bf

  • SHA512

    0f0c0f4a04ae65532a7f4c197ca22c371d904a5b3055e14bd537a3c092d8b4526a597564019395ed0b05d4ffbc6d9b450a8d267de3906f88ac2d320f9c75bdd9

  • SSDEEP

    49152:ecS3YhW8zBQSc0ZnSKBZKumZr7AQkojSo0kzI8ZVE6VPbe:sYY0Zn3K/AQz3Tbx56

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      merd.msi

    • Size

      2.0MB

    • MD5

      309abcad11b67d2498cf87c4e10ff30f

    • SHA1

      0d805a684b889846a7b00cecc0ee84c7cf93398d

    • SHA256

      c39abdca1a31b20fe06969a36102c784df7f63847ec930dfaf8c4bd97b4558bf

    • SHA512

      0f0c0f4a04ae65532a7f4c197ca22c371d904a5b3055e14bd537a3c092d8b4526a597564019395ed0b05d4ffbc6d9b450a8d267de3906f88ac2d320f9c75bdd9

    • SSDEEP

      49152:ecS3YhW8zBQSc0ZnSKBZKumZr7AQkojSo0kzI8ZVE6VPbe:sYY0Zn3K/AQz3Tbx56

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Blocklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks