General

  • Target

    54875ac4320bf52723ddc5b0c1eb27bdf4280e72ca6412f22baf6c06a6694d1d

  • Size

    2.8MB

  • Sample

    231213-zfawfahbdn

  • MD5

    747353e44077b114a107922734154d0b

  • SHA1

    00be79816bd714c0fd2291fc9f22eaf50ca39342

  • SHA256

    54875ac4320bf52723ddc5b0c1eb27bdf4280e72ca6412f22baf6c06a6694d1d

  • SHA512

    fc60249c2a69aec89406bb47059bec1fe5b64905a3103d069b9e033a3a354191769dee5b117517df0e4be9daf922762e75ef62ce5062c537e077113dfcec440a

  • SSDEEP

    49152:AczRbTnVOVf74xWCq/2BodSZm537/9PfvVeTt21R4gpP6qU4Bm9R84lrMspPmo/F:KfcQP/CokZm37VPFeTt45w2m9R8499BT

Malware Config

Targets

    • Target

      54875ac4320bf52723ddc5b0c1eb27bdf4280e72ca6412f22baf6c06a6694d1d

    • Size

      2.8MB

    • MD5

      747353e44077b114a107922734154d0b

    • SHA1

      00be79816bd714c0fd2291fc9f22eaf50ca39342

    • SHA256

      54875ac4320bf52723ddc5b0c1eb27bdf4280e72ca6412f22baf6c06a6694d1d

    • SHA512

      fc60249c2a69aec89406bb47059bec1fe5b64905a3103d069b9e033a3a354191769dee5b117517df0e4be9daf922762e75ef62ce5062c537e077113dfcec440a

    • SSDEEP

      49152:AczRbTnVOVf74xWCq/2BodSZm537/9PfvVeTt21R4gpP6qU4Bm9R84lrMspPmo/F:KfcQP/CokZm37VPFeTt45w2m9R8499BT

    • Executes dropped EXE

    • Adds Run key to start application

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Detected potential entity reuse from brand paypal.

MITRE ATT&CK Enterprise v15

Tasks