General

  • Target

    7d5290147f10544352a796d5481e14da6f0b61a978df0008ab04e03fedef7597

  • Size

    913KB

  • Sample

    221128-r11nlaba85

  • MD5

    c11f46de8a3077c7194e5130fdde184f

  • SHA1

    f26ab6b0eb1f4529c551474c19844853443bccbd

  • SHA256

    7d5290147f10544352a796d5481e14da6f0b61a978df0008ab04e03fedef7597

  • SHA512

    3121f83e3623e57d8354bf91c5d72574e2f10b48f5d5bfc9bd97fd297ed0a73d2d9ecda187085d27abcd2e2fd0ee363c2b4887a00c90def9d13080e0e78c3c97

  • SSDEEP

    24576:Z5WPDVMYCNGa4/NBzyrimh3E5JBKfjJj5dVO:ZgPDyXNGa4erisEQrPO

Malware Config

Targets

    • Target

      7d5290147f10544352a796d5481e14da6f0b61a978df0008ab04e03fedef7597

    • Size

      913KB

    • MD5

      c11f46de8a3077c7194e5130fdde184f

    • SHA1

      f26ab6b0eb1f4529c551474c19844853443bccbd

    • SHA256

      7d5290147f10544352a796d5481e14da6f0b61a978df0008ab04e03fedef7597

    • SHA512

      3121f83e3623e57d8354bf91c5d72574e2f10b48f5d5bfc9bd97fd297ed0a73d2d9ecda187085d27abcd2e2fd0ee363c2b4887a00c90def9d13080e0e78c3c97

    • SSDEEP

      24576:Z5WPDVMYCNGa4/NBzyrimh3E5JBKfjJj5dVO:ZgPDyXNGa4erisEQrPO

    • Registers COM server for autorun

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Checks whether UAC is enabled

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks