Resubmissions

25-11-2020 10:45

201125-ekgtzqvpsn 8

25-11-2020 10:44

201125-hrpw21dsr6 8

25-11-2020 10:43

201125-wwx6w44c6j 8

General

  • Target

    VitalInstaller.exe

  • Size

    23.6MB

  • Sample

    201125-ekgtzqvpsn

  • MD5

    e21bfcc2a8f2a46655bb7192858c7160

  • SHA1

    33c9e1f6977d040bad6ec7ff52e2042a9e1ad976

  • SHA256

    fa0698c6c51ff98d404bda2d90397aba8a03488cbe55fb62f1f02db7c63150b8

  • SHA512

    c87e19708188b8dea23a6b073e8b2faa1deed78ec7d07fff844615dc89997e4d4d30cee4c2c8ea6c2fb1327e27badfe4846dc7e146238cb43879ff09c433a2e9

Score
8/10

Malware Config

Targets

    • Target

      VitalInstaller.exe

    • Size

      23.6MB

    • MD5

      e21bfcc2a8f2a46655bb7192858c7160

    • SHA1

      33c9e1f6977d040bad6ec7ff52e2042a9e1ad976

    • SHA256

      fa0698c6c51ff98d404bda2d90397aba8a03488cbe55fb62f1f02db7c63150b8

    • SHA512

      c87e19708188b8dea23a6b073e8b2faa1deed78ec7d07fff844615dc89997e4d4d30cee4c2c8ea6c2fb1327e27badfe4846dc7e146238cb43879ff09c433a2e9

    Score
    8/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • JavaScript code in executable

MITRE ATT&CK Matrix ATT&CK v6

Discovery

Query Registry

1
T1012

Tasks