Overview

overview

8

Static

static

1

mediacreat...2).exe

windows11-21h2-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    mediacreationtool (2).exe

  • Size

    10.5MB

  • Sample

    250111-pz1absskdj

  • MD5

    b2ef653a8575cebf20a4aabe17b70b6b

  • SHA1

    a686304500e45ebf945c85b9de9085e6b58604c0

  • SHA256

    ab9967c2cd345ffdbf3c4283d95bb23c77a82a2782f381634f5dfa48f2b75071

  • SHA512

    dd293115d1f1b4474f5cdb03884529ea9e887f2420df8b4b050cb6f0e458cf8515c6dd33b977c20c680c088d6b4728f922df74f0f2475b2762f4f4377971f21b

  • SSDEEP

    196608:A5bD7KOunIMtG90JfG9o1/9nxRnI2UHafMeF0pbhoFpS9oBDh:G7KOOtu04m9nxRI2U4cpbh00QN

Score
8/10
microsoftdefense_evasiondiscoveryphishing

Malware Config

Targets

    • Target

      mediacreationtool (2).exe

    • Size

      10.5MB

    • MD5

      b2ef653a8575cebf20a4aabe17b70b6b

    • SHA1

      a686304500e45ebf945c85b9de9085e6b58604c0

    • SHA256

      ab9967c2cd345ffdbf3c4283d95bb23c77a82a2782f381634f5dfa48f2b75071

    • SHA512

      dd293115d1f1b4474f5cdb03884529ea9e887f2420df8b4b050cb6f0e458cf8515c6dd33b977c20c680c088d6b4728f922df74f0f2475b2762f4f4377971f21b

    • SSDEEP

      196608:A5bD7KOunIMtG90JfG9o1/9nxRnI2UHafMeF0pbhoFpS9oBDh:G7KOOtu04m9nxRI2U4cpbh00QN

    Score
    8/10
    microsoftdefense_evasiondiscoveryphishing

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks system information in the registry

      System information is often read in order to detect sandboxing environments.

    • Detected potential entity reuse from brand MICROSOFT.

      phishingmicrosoft
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks