General

  • Target

    4950ee288ad5492c81cb5d7e71f9ed739053e9c3565ebc5d5e22f8d038bfaba7

  • Size

    40KB

  • Sample

    221106-e21zjaehgn

  • MD5

    157e936faae225b8bb827a469d9955c0

  • SHA1

    54dfd788c00af47c5047f5485bdc15987c89e05d

  • SHA256

    4950ee288ad5492c81cb5d7e71f9ed739053e9c3565ebc5d5e22f8d038bfaba7

  • SHA512

    1c587324fa9ec4fe5b7f4fcb6652feeaf5d7da3e1e50a856e8b2aa4958cc84f9542decce7b15c15fd8942f298fe396b6e27ddf03df99d9ca643058ac7ce10280

  • SSDEEP

    768:/98ZEVg5Q1exvXnA8n4aK17CZHYMo5NJ:/uEaVTnho5NJ

Malware Config

Targets

    • Target

      4950ee288ad5492c81cb5d7e71f9ed739053e9c3565ebc5d5e22f8d038bfaba7

    • Size

      40KB

    • MD5

      157e936faae225b8bb827a469d9955c0

    • SHA1

      54dfd788c00af47c5047f5485bdc15987c89e05d

    • SHA256

      4950ee288ad5492c81cb5d7e71f9ed739053e9c3565ebc5d5e22f8d038bfaba7

    • SHA512

      1c587324fa9ec4fe5b7f4fcb6652feeaf5d7da3e1e50a856e8b2aa4958cc84f9542decce7b15c15fd8942f298fe396b6e27ddf03df99d9ca643058ac7ce10280

    • SSDEEP

      768:/98ZEVg5Q1exvXnA8n4aK17CZHYMo5NJ:/uEaVTnho5NJ

    • Possible privilege escalation attempt

    • Modifies file permissions

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

File Permissions Modification

1
T1222

Modify Registry

1
T1112

Tasks