Overview

overview

10

Static

static

10

Assistente...25.msi

windows7-x64

10

Assistente...25.msi

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Assistente-Alvara-2025.msi

  • Size

    2.9MB

  • Sample

    250116-twhnbsylhs

  • MD5

    672307c99954c15ae1ce06247bffed96

  • SHA1

    df540b39d3b24274edc52a082ecb1bcaef7ea56e

  • SHA256

    3a3ec843ddee26040a34b72ebb95c33c2a129d6f09b42f96d0320a79bd2a55d5

  • SHA512

    0a8c88b50165f71c815c276d4b55bff6680bb4ae52bc2ce429985e4457750ed49d2256bb558589a8bbeff2889f1b1df5741bab64fa90476c42f370b60548a566

  • SSDEEP

    49152:K+1Ypn4N2MGVv1zyIBWGppT9jnMHRjOOozjcqZJN8dUZTwYaH7oqPxMbY+K/tzQz:K+lUlz9FKbsodq0YaH7ZPxMb8tT

Score
10/10
ateraagentdiscoverypersistenceprivilege_escalationrat

Malware Config

Targets

    • Target

      Assistente-Alvara-2025.msi

    • Size

      2.9MB

    • MD5

      672307c99954c15ae1ce06247bffed96

    • SHA1

      df540b39d3b24274edc52a082ecb1bcaef7ea56e

    • SHA256

      3a3ec843ddee26040a34b72ebb95c33c2a129d6f09b42f96d0320a79bd2a55d5

    • SHA512

      0a8c88b50165f71c815c276d4b55bff6680bb4ae52bc2ce429985e4457750ed49d2256bb558589a8bbeff2889f1b1df5741bab64fa90476c42f370b60548a566

    • SSDEEP

      49152:K+1Ypn4N2MGVv1zyIBWGppT9jnMHRjOOozjcqZJN8dUZTwYaH7oqPxMbY+K/tzQz:K+lUlz9FKbsodq0YaH7ZPxMb8tT

    Score
    10/10
    ateraagentdiscoverypersistenceprivilege_escalationrat

    • AteraAgent

      AteraAgent is a remote monitoring and management tool.

      ratateraagent

    • Ateraagent family

      ateraagent

    • Detects AteraAgent

    • Blocklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks