General

  • Target

    3ac089bcf6392437c03aca380de9d6faee049448d3e49edcf72e5ba6024958ea

  • Size

    1.8MB

  • Sample

    220823-158dnscbhp

  • MD5

    707de025f2ab727fbb3b33f4ff8b97b3

  • SHA1

    51a571a425a36cbbc3103d5e9991d080ccd4abc6

  • SHA256

    3ac089bcf6392437c03aca380de9d6faee049448d3e49edcf72e5ba6024958ea

  • SHA512

    256104c78b6f4a7ae7698a5dfa208526583124aec0be194b267e7ab83ed29b0fd893cd3fb829d1d11ef5abcb94192bdf2993780c5a6b8caebe6fb40d1fadf91c

  • SSDEEP

    49152:Y1uZMQTHvWorKzx/L9GJENaYcBLxH030Du:Y1ueoH6xYJEHcU3Z

Malware Config

Targets

    • Target

      3ac089bcf6392437c03aca380de9d6faee049448d3e49edcf72e5ba6024958ea

    • Size

      1.8MB

    • MD5

      707de025f2ab727fbb3b33f4ff8b97b3

    • SHA1

      51a571a425a36cbbc3103d5e9991d080ccd4abc6

    • SHA256

      3ac089bcf6392437c03aca380de9d6faee049448d3e49edcf72e5ba6024958ea

    • SHA512

      256104c78b6f4a7ae7698a5dfa208526583124aec0be194b267e7ab83ed29b0fd893cd3fb829d1d11ef5abcb94192bdf2993780c5a6b8caebe6fb40d1fadf91c

    • SSDEEP

      49152:Y1uZMQTHvWorKzx/L9GJENaYcBLxH030Du:Y1ueoH6xYJEHcU3Z

    • Modifies security service

    • Executes dropped EXE

    • Possible privilege escalation attempt

    • Stops running service(s)

    • Modifies file permissions

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks