General

  • Target

    05c54042baf73af4231b4bc3da04a187

  • Size

    51KB

  • Sample

    231224-tzjd2abcbn

  • MD5

    05c54042baf73af4231b4bc3da04a187

  • SHA1

    194e2a2c83a4c365250ca7cf42d3e7a08192d085

  • SHA256

    7bf18229164d31f6afcaa746cd2678d9e6ccabe0cc61e1869bd39160cb7fd3ae

  • SHA512

    f7821f4362de60651daf51be2eff305428db16c1126c32fa427f7aba6c90e42120186b743a8deb2e564f52e2da5614f5d44b7c845894d3375efcbe1349e2869d

  • SSDEEP

    768:dkYTL0bL6eLz7vydjFFw0rqEIn5CHV7M5EHdMtSLfsJydXoJXvYXt1yKPm:+qA6ynvyfFwxBn5czHmIfsUEu5m

Malware Config

Targets

    • Target

      05c54042baf73af4231b4bc3da04a187

    • Size

      51KB

    • MD5

      05c54042baf73af4231b4bc3da04a187

    • SHA1

      194e2a2c83a4c365250ca7cf42d3e7a08192d085

    • SHA256

      7bf18229164d31f6afcaa746cd2678d9e6ccabe0cc61e1869bd39160cb7fd3ae

    • SHA512

      f7821f4362de60651daf51be2eff305428db16c1126c32fa427f7aba6c90e42120186b743a8deb2e564f52e2da5614f5d44b7c845894d3375efcbe1349e2869d

    • SSDEEP

      768:dkYTL0bL6eLz7vydjFFw0rqEIn5CHV7M5EHdMtSLfsJydXoJXvYXt1yKPm:+qA6ynvyfFwxBn5czHmIfsUEu5m

    • Drops file in Drivers directory

    • Sets DLL path for service in the registry

    • Deletes itself

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks