General

  • Target

    5940db96c4ce58f91e1b7bb20516b8f0

  • Size

    567KB

  • Sample

    231226-g4g1jsechr

  • MD5

    5940db96c4ce58f91e1b7bb20516b8f0

  • SHA1

    c25363930c3dbd1f31a272a7a7795b8a2698d0e2

  • SHA256

    84a2eccd724886f2464b1a6151ed67d36a9bd744240ebcd07f43769d32707cc4

  • SHA512

    1093dd78c034dec5e30260add438087358113b06e5b1297004718884010b942f129173258888fce20fb315b3d9af8431a64552b3d70c8ba9f7af14d2c624ebd3

  • SSDEEP

    12288:UZWtI6RktOB0vkureZJys73dOvXDpNjNe8Nut:UuhatOATeZJ8NI8K

Score
10/10

Malware Config

Targets

    • Target

      5940db96c4ce58f91e1b7bb20516b8f0

    • Size

      567KB

    • MD5

      5940db96c4ce58f91e1b7bb20516b8f0

    • SHA1

      c25363930c3dbd1f31a272a7a7795b8a2698d0e2

    • SHA256

      84a2eccd724886f2464b1a6151ed67d36a9bd744240ebcd07f43769d32707cc4

    • SHA512

      1093dd78c034dec5e30260add438087358113b06e5b1297004718884010b942f129173258888fce20fb315b3d9af8431a64552b3d70c8ba9f7af14d2c624ebd3

    • SSDEEP

      12288:UZWtI6RktOB0vkureZJys73dOvXDpNjNe8Nut:UuhatOATeZJ8NI8K

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks