General

  • Target

    ac25ab7bfe65d4742a48b3e3016acd9425343d327895136ba189245a50a71963

  • Size

    825KB

  • Sample

    221128-r228tabb63

  • MD5

    39fc9a5bd6a4ce34b18a22c014a6c12e

  • SHA1

    be2ac26d7359810dec9eddc451bbba6b4409c7f0

  • SHA256

    ac25ab7bfe65d4742a48b3e3016acd9425343d327895136ba189245a50a71963

  • SHA512

    953b5c4b6c4a6042b44b0a4fc9df2962c8c84f3d41112f44ef190ecd9329d5d815393a6853f118d34b03267f983cc3907433496539a3060a1496be458e9a3135

  • SSDEEP

    24576:FmRsNEkzEYuNq6BqoGeUMa6O1bPm85x6n+W:FmmNEsF6BFCMO1i85xJW

Malware Config

Targets

    • Target

      ac25ab7bfe65d4742a48b3e3016acd9425343d327895136ba189245a50a71963

    • Size

      825KB

    • MD5

      39fc9a5bd6a4ce34b18a22c014a6c12e

    • SHA1

      be2ac26d7359810dec9eddc451bbba6b4409c7f0

    • SHA256

      ac25ab7bfe65d4742a48b3e3016acd9425343d327895136ba189245a50a71963

    • SHA512

      953b5c4b6c4a6042b44b0a4fc9df2962c8c84f3d41112f44ef190ecd9329d5d815393a6853f118d34b03267f983cc3907433496539a3060a1496be458e9a3135

    • SSDEEP

      24576:FmRsNEkzEYuNq6BqoGeUMa6O1bPm85x6n+W:FmmNEsF6BFCMO1i85xJW

    • Registers COM server for autorun

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Checks whether UAC is enabled

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks