Overview

overview

6

Static

static

3

WebM Premi...al.pdf

windows7-x64

3

WebM Premi...al.pdf

windows10-2004-x64

3

WebM_Premiere.msi

windows7-x64

6

WebM_Premiere.msi

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    WebM_Premiere_v1.5.0.zip

  • Size

    10.1MB

  • Sample

    241121-ca2ewaxphx

  • MD5

    8b1ab2b98889cfb601d5a51e0e336bb7

  • SHA1

    03e14fc4bf7f266ce56e73d7915caf863a458255

  • SHA256

    5883edd9c939f4212021ed78572054caea0d3b0cb5c8d938357a7b499544b61a

  • SHA512

    d7b784e7c40c4157af3d9e1979b6758cb8bec49f2ef6cc7394758ecd3f09b3b1243997faa0cfb3706e01a426bbab4540a94ade34ced43fef0f32900ffd0ad487

  • SSDEEP

    196608:zFApDfYh6iKaZvOeLPmrjtSO8hDsLlIehD8Ofcdan1bi0G4Xx8xA:zDciKeXOjkO8JK3D8OffiQx2A

Score
6/10
discoverylinkpdfpersistenceprivilege_escalation

Malware Config

Targets

    • Target

      WebM Premiere Manual.pdf

    • Size

      477KB

    • MD5

      d13a10fb1bc16050b02fc348bf526a33

    • SHA1

      643df82d8db61ede91b7fd16a9282781303acef3

    • SHA256

      c715c8d934afd39cfe7b51a6ea046de9f38175411dd293753bb04948e0dc7f8b

    • SHA512

      2251595d96a7c515f4a5141441b8ceb658b36178607fcc303f21b88425ca0483ef808f26f468cb9f917eb63e1b9a6fe192917335d682f4465705cf8ec96d8b04

    • SSDEEP

      12288:Ap00o9mVbglgCwQM2VXpAhi4x6Ia1eZ6yKwJs0:AuhQVElgCmapAhiK6h1fdAb

    Score
    3/10
    discovery
    behavioral1behavioral2

    • Target

      WebM_Premiere.msi

    • Size

      9.8MB

    • MD5

      a914bade13e6df609b57bf8a3e3d5010

    • SHA1

      b9abb9fabe1e9a9b4f0391945b47fcede813da85

    • SHA256

      8d0a4372c4af1f3e94661c2577b68c130f686506dbe647c98691ed7d2e3947e3

    • SHA512

      051d575956323fc881741111528c841874b414aacb787c5542803d934122898ff38bb976d00b32fb95bc7986db7b01a05d4837276d69c40cc8b3b37e2807d27b

    • SSDEEP

      196608:LBEKTWkkBNM5116cg2zc/blV4G1TwAfh91v3rPJsDjSOYl7m27lP:xWkQ6122Y/bljTwAfxv7xFn

    Score
    6/10
    persistenceprivilege_escalation

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks