General

  • Target

    cb58033d333ce4d39c63978535e3d91e.bin

  • Size

    78.7MB

  • Sample

    231213-d59v6sfegn

  • MD5

    cb58033d333ce4d39c63978535e3d91e

  • SHA1

    b5740b3fe890a511f7524c88b1f45845ef3333a6

  • SHA256

    2a1a8f4f8a42ed7fb7bcc3dcc4fde0acd6db267784cbc3431852b2882c4c6ae1

  • SHA512

    d17c468837f5de45217e5421049f2a31fd9d67b2b5f5d8e2755ba4de4ad60c15d6b49d4e949cc22403ba939b796bf97f81371ef30a6d3aadc805d001b538ca58

  • SSDEEP

    1572864:M2MbiJR5Q3j88pSk8IpG7V+VPhqHnE7gwjCi9WlsnghowmaOll4WmVSzsWX:MZbC+7SkB05awHMuiMsghfxOll4j8z

Malware Config

Targets

    • Target

      cb58033d333ce4d39c63978535e3d91e.bin

    • Size

      78.7MB

    • MD5

      cb58033d333ce4d39c63978535e3d91e

    • SHA1

      b5740b3fe890a511f7524c88b1f45845ef3333a6

    • SHA256

      2a1a8f4f8a42ed7fb7bcc3dcc4fde0acd6db267784cbc3431852b2882c4c6ae1

    • SHA512

      d17c468837f5de45217e5421049f2a31fd9d67b2b5f5d8e2755ba4de4ad60c15d6b49d4e949cc22403ba939b796bf97f81371ef30a6d3aadc805d001b538ca58

    • SSDEEP

      1572864:M2MbiJR5Q3j88pSk8IpG7V+VPhqHnE7gwjCi9WlsnghowmaOll4WmVSzsWX:MZbC+7SkB05awHMuiMsghfxOll4j8z

    • Enumerates VirtualBox DLL files

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks