General

  • Target

    02f05f48bda5ea1ffe01ca6e687fcf0c370443bd09f8766c53874cc51c55d281

  • Size

    2.8MB

  • Sample

    231213-z476vaahb8

  • MD5

    705a595a7775574d4ec736fda387b91d

  • SHA1

    59180b15d0f22a7957fcd4eebc9b0b5ffc039495

  • SHA256

    02f05f48bda5ea1ffe01ca6e687fcf0c370443bd09f8766c53874cc51c55d281

  • SHA512

    976c5bc7fe81ca625139c7bc762adcef72d5f114eff181ccfa3af67848ab33e6c79f0d38845b0261a81f01d77fbb92682e865174ee66eaa779c1a82c14aa3d28

  • SSDEEP

    49152:zImFRRTnVwd4woR5hCfKLBL6Smn6dZ8gE56+Yy9PNGxyOX4g8dNWDA2RsVU5a2oZ:w43L6K1Ljm6dZcAqGxyk5I8DAUsm02Sb

Malware Config

Targets

    • Target

      02f05f48bda5ea1ffe01ca6e687fcf0c370443bd09f8766c53874cc51c55d281

    • Size

      2.8MB

    • MD5

      705a595a7775574d4ec736fda387b91d

    • SHA1

      59180b15d0f22a7957fcd4eebc9b0b5ffc039495

    • SHA256

      02f05f48bda5ea1ffe01ca6e687fcf0c370443bd09f8766c53874cc51c55d281

    • SHA512

      976c5bc7fe81ca625139c7bc762adcef72d5f114eff181ccfa3af67848ab33e6c79f0d38845b0261a81f01d77fbb92682e865174ee66eaa779c1a82c14aa3d28

    • SSDEEP

      49152:zImFRRTnVwd4woR5hCfKLBL6Smn6dZ8gE56+Yy9PNGxyOX4g8dNWDA2RsVU5a2oZ:w43L6K1Ljm6dZcAqGxyk5I8DAUsm02Sb

    • Executes dropped EXE

    • Adds Run key to start application

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Detected potential entity reuse from brand paypal.

MITRE ATT&CK Enterprise v15

Tasks