Overview

overview

8

Static

static

1

plugdata-Win64.msi

windows7-x64

8

plugdata-Win64.msi

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    plugdata-Win64.msi

  • Size

    360.1MB

  • Sample

    250218-j9cdcsypct

  • MD5

    e5042cbe2eca84c535159f256852dedb

  • SHA1

    c966835e4e4e3caec69ade0dbb40a4eead8876a9

  • SHA256

    7c97f1aabb8a88cf934ec9341038c2d53c1cfbd655c5f76e4f0d1345325491ed

  • SHA512

    7171eebeff0c9d3b0a8110ad0b8cd206eab35af5b4c84a8a0791faef6352c4cd872bbcd67b3d4b15c66ef31b29a93dcd5265769354f4d2a0d5c78536892f3400

  • SSDEEP

    6291456:HnFbhczsO1HryMIde16W/Iuho59O281SquBbVDNkYw/7JBRWZEpbZgSoC:lKLyMm4JYE2mSNbX6vu0E

Score
8/10
executionpersistenceprivilege_escalation

Malware Config

Targets

    • Target

      plugdata-Win64.msi

    • Size

      360.1MB

    • MD5

      e5042cbe2eca84c535159f256852dedb

    • SHA1

      c966835e4e4e3caec69ade0dbb40a4eead8876a9

    • SHA256

      7c97f1aabb8a88cf934ec9341038c2d53c1cfbd655c5f76e4f0d1345325491ed

    • SHA512

      7171eebeff0c9d3b0a8110ad0b8cd206eab35af5b4c84a8a0791faef6352c4cd872bbcd67b3d4b15c66ef31b29a93dcd5265769354f4d2a0d5c78536892f3400

    • SSDEEP

      6291456:HnFbhczsO1HryMIde16W/Iuho59O281SquBbVDNkYw/7JBRWZEpbZgSoC:lKLyMm4JYE2mSNbX6vu0E

    Score
    8/10
    executionpersistenceprivilege_escalation

    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

      execution

    • Drops desktop.ini file(s)

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks