General
-
Target
MicrosoftEdgeWebview2Setup.exe
-
Size
1.6MB
-
Sample
241229-v2nl7svnbk
-
MD5
b49d269a231bcf719d6de10f6dcf0692
-
SHA1
5de6eb9c7091df08529692650224d89cae8695c3
-
SHA256
bde514014b95c447301d9060a221efb439c3c1f5db53415f080d4419db75b27e
-
SHA512
8f7c76f9c8f422e80ade13ed60f9d1fabd66fef447018a19f0398f4501c0ecc9cc2c9af3cc4f55d56df8c460a755d70699634c96093885780fc2114449784b5f
-
SSDEEP
49152:2iEx3ZsKgbBPetIhztPqpP0NxVjRLhlcoRZ:2issKgbBOIhzV3RhlcoRZ
Malware Config
Targets
-
-
Target
MicrosoftEdgeWebview2Setup.exe
-
Size
1.6MB
-
MD5
b49d269a231bcf719d6de10f6dcf0692
-
SHA1
5de6eb9c7091df08529692650224d89cae8695c3
-
SHA256
bde514014b95c447301d9060a221efb439c3c1f5db53415f080d4419db75b27e
-
SHA512
8f7c76f9c8f422e80ade13ed60f9d1fabd66fef447018a19f0398f4501c0ecc9cc2c9af3cc4f55d56df8c460a755d70699634c96093885780fc2114449784b5f
-
SSDEEP
49152:2iEx3ZsKgbBPetIhztPqpP0NxVjRLhlcoRZ:2issKgbBOIhzV3RhlcoRZ
Score6/10-
Downloads MZ/PE file
-
Event Triggered Execution: Image File Execution Options Injection
-
Event Triggered Execution: Component Object Model Hijacking
Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
-
MITRE ATT&CK Enterprise v15
Persistence
Event Triggered Execution
2Component Object Model Hijacking
1Image File Execution Options Injection
1Privilege Escalation
Event Triggered Execution
2Component Object Model Hijacking
1Image File Execution Options Injection
1