General

  • Target

    383b3cf59910849e736854863f365ebfd26ced2540a680e7ed64aa69faf25aea

  • Size

    206KB

  • Sample

    221021-cekypafge3

  • MD5

    5eedb4a4c6e3132f9c02dc9eacea82dc

  • SHA1

    200f8a2d179fa58812a7bba1e6f46872d1470773

  • SHA256

    383b3cf59910849e736854863f365ebfd26ced2540a680e7ed64aa69faf25aea

  • SHA512

    dfb2c3dccbddd85cecb6f591f3ed1ee2fea2c25f1fbc6750e92d9782e476d9643b033d37e1d7bb5891c85261963fb48b4a3ec9ace6459299949307cc7b197db2

  • SSDEEP

    3072:bbluj2AgK1S4lQ/qml80FqCKmgTRHGvcqRI0NU/iYyAn:bbl5RKgOGqml80FrgTRHGvJI08iY1

Score
10/10

Malware Config

Targets

    • Target

      383b3cf59910849e736854863f365ebfd26ced2540a680e7ed64aa69faf25aea

    • Size

      206KB

    • MD5

      5eedb4a4c6e3132f9c02dc9eacea82dc

    • SHA1

      200f8a2d179fa58812a7bba1e6f46872d1470773

    • SHA256

      383b3cf59910849e736854863f365ebfd26ced2540a680e7ed64aa69faf25aea

    • SHA512

      dfb2c3dccbddd85cecb6f591f3ed1ee2fea2c25f1fbc6750e92d9782e476d9643b033d37e1d7bb5891c85261963fb48b4a3ec9ace6459299949307cc7b197db2

    • SSDEEP

      3072:bbluj2AgK1S4lQ/qml80FqCKmgTRHGvcqRI0NU/iYyAn:bbl5RKgOGqml80FrgTRHGvJI08iY1

    Score
    10/10
    • Modifies WinLogon for persistence

    • Modifies visiblity of hidden/system files in Explorer

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Modifies Installed Components in the registry

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks