General

  • Target

    4513aa62b49740a17ffe5cd311bd4e6c31d575c3ea20a281bd33ed50b16ae589

  • Size

    2.8MB

  • Sample

    231213-2bnmvahgcl

  • MD5

    c3f881e65a8d1055dea7126e66ef0c51

  • SHA1

    88a68a754dd7288dc22707dd8280c1a1cbafc189

  • SHA256

    4513aa62b49740a17ffe5cd311bd4e6c31d575c3ea20a281bd33ed50b16ae589

  • SHA512

    db4383b5bad2d505aa0aa38db9f50271b73242df9ea9344c3a225fdfa7ce6a64d3255fa1de74b09fe28687d03697850f504407b3fc3301e45f07facb67bbb90e

  • SSDEEP

    49152:IECydCPlnV8Q7XoYCGasB0bSwlzxlZlKI/P1K4g+L8bgXSqffOmeeGyb5H0:RC2ir7baM0+wFxlT93E5M8bgiSGybF0

Malware Config

Targets

    • Target

      4513aa62b49740a17ffe5cd311bd4e6c31d575c3ea20a281bd33ed50b16ae589

    • Size

      2.8MB

    • MD5

      c3f881e65a8d1055dea7126e66ef0c51

    • SHA1

      88a68a754dd7288dc22707dd8280c1a1cbafc189

    • SHA256

      4513aa62b49740a17ffe5cd311bd4e6c31d575c3ea20a281bd33ed50b16ae589

    • SHA512

      db4383b5bad2d505aa0aa38db9f50271b73242df9ea9344c3a225fdfa7ce6a64d3255fa1de74b09fe28687d03697850f504407b3fc3301e45f07facb67bbb90e

    • SSDEEP

      49152:IECydCPlnV8Q7XoYCGasB0bSwlzxlZlKI/P1K4g+L8bgXSqffOmeeGyb5H0:RC2ir7baM0+wFxlT93E5M8bgiSGybF0

    • Executes dropped EXE

    • Adds Run key to start application

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Detected potential entity reuse from brand paypal.

MITRE ATT&CK Enterprise v15

Tasks