da989874b3610efe92f46f67d6a83b5f81f2ac1c90fb1133adc27b0b29c96b94

General
Target

da989874b3610efe92f46f67d6a83b5f81f2ac1c90fb1133adc27b0b29c96b94

Size

1MB

Sample

200121-8rfx5g85jj

Score
6 /10
MD5

d2bbda5cc6e78a6a9baa39e2cdda4923

SHA1

8e830f5c5d144cbe7554c91a846a20aca6322c60

SHA256

da989874b3610efe92f46f67d6a83b5f81f2ac1c90fb1133adc27b0b29c96b94

SHA512

76f75e95c0aaac7e30cd658581f6f6ad8dbeb9a1a751317ef8afd1d7d64911e53d9c081dbfc1c73dba367279e039e96178ed99b5d01ef6a806a7b6c135c3c222

Malware Config
Targets
Target

da989874b3610efe92f46f67d6a83b5f81f2ac1c90fb1133adc27b0b29c96b94

MD5

d2bbda5cc6e78a6a9baa39e2cdda4923

Filesize

1MB

Score
6 /10
SHA1

8e830f5c5d144cbe7554c91a846a20aca6322c60

SHA256

da989874b3610efe92f46f67d6a83b5f81f2ac1c90fb1133adc27b0b29c96b94

SHA512

76f75e95c0aaac7e30cd658581f6f6ad8dbeb9a1a751317ef8afd1d7d64911e53d9c081dbfc1c73dba367279e039e96178ed99b5d01ef6a806a7b6c135c3c222

Tags

Signatures

  • Drops file in System32 directory

  • Modifies system certificate store

    Tags

    TTPs

    Install Root Certificate Modify Registry
  • Sets desktop wallpaper using registry

    Tags

    TTPs

    Defacement Modify Registry
  • Drops autorun.inf file

    Tags

    TTPs

    Replication Through Removable Media
  • Checks whether UAC is enabled

    Tags

    TTPs

    System Information Discovery

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Execution
          Exfiltration
            Impact
            Initial Access
              Persistence
                Privilege Escalation