General

  • Target

    source_prepared.exe

  • Size

    80.2MB

  • Sample

    230919-yfp5pabf81

  • MD5

    d1dc74fd433095334c59b7aa868746f6

  • SHA1

    60cdddbdda0d96cb68d0a83f84da656afd8c1cea

  • SHA256

    b0d0d8b68e1780110dd028e97b8a7b82b4a0186e7d4e8beb734f95891b9751d4

  • SHA512

    b52485f6818073928c4e0f948649f61bdbbf71684216bf4c22a19324d387f220a9ca823da0d16bed700f4d1c8279c10723efe7a628c74280f209edd8e9077662

  • SSDEEP

    1572864:T2MTiQYHuiEH/E7lftamtWWc2Mp6SbDirAH8+1osuTCSxOB6xMbWuamrBDzzg:TZTixO3HPWlc2gnbDS6xjKcBaOvamrxQ

Malware Config

Targets

    • Target

      source_prepared.exe

    • Size

      80.2MB

    • MD5

      d1dc74fd433095334c59b7aa868746f6

    • SHA1

      60cdddbdda0d96cb68d0a83f84da656afd8c1cea

    • SHA256

      b0d0d8b68e1780110dd028e97b8a7b82b4a0186e7d4e8beb734f95891b9751d4

    • SHA512

      b52485f6818073928c4e0f948649f61bdbbf71684216bf4c22a19324d387f220a9ca823da0d16bed700f4d1c8279c10723efe7a628c74280f209edd8e9077662

    • SSDEEP

      1572864:T2MTiQYHuiEH/E7lftamtWWc2Mp6SbDirAH8+1osuTCSxOB6xMbWuamrBDzzg:TZTixO3HPWlc2gnbDS6xjKcBaOvamrxQ

    Score
    9/10
    • Enumerates VirtualBox DLL files

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks