General
-
Target
0d077496082dac08f995437b8f1ffc45
-
Size
381KB
-
Sample
231230-d21s4afaf2
-
MD5
0d077496082dac08f995437b8f1ffc45
-
SHA1
e49ce738856422fc789090d77e21a11f3fdfa07d
-
SHA256
46a32b23cdc9a1faf31e026f301da281738b439330e5ddece513d8b718e9e91c
-
SHA512
d1447a9f171a9e685d7884f32b4d33c076b65b4874c7dd694cc022ec8b671fb21339131706783c61c308c4038a47e8154b5e624f0be1c2b9b4fc38178eb0f13a
-
SSDEEP
6144:lvIgW9gaNaoK0zat8Gzw+NUxoK0zat8GzwzkIXfYnPY9lrhdMwPTPSDZ:lQNiWK0qNLK0qjIQnAYwPzSN
Malware Config
Targets
-
-
Target
0d077496082dac08f995437b8f1ffc45
-
Size
381KB
-
MD5
0d077496082dac08f995437b8f1ffc45
-
SHA1
e49ce738856422fc789090d77e21a11f3fdfa07d
-
SHA256
46a32b23cdc9a1faf31e026f301da281738b439330e5ddece513d8b718e9e91c
-
SHA512
d1447a9f171a9e685d7884f32b4d33c076b65b4874c7dd694cc022ec8b671fb21339131706783c61c308c4038a47e8154b5e624f0be1c2b9b4fc38178eb0f13a
-
SSDEEP
6144:lvIgW9gaNaoK0zat8Gzw+NUxoK0zat8GzwzkIXfYnPY9lrhdMwPTPSDZ:lQNiWK0qNLK0qjIQnAYwPzSN
Score8/10-
Drops file in Drivers directory
-
Sets service image path in registry
-
Modifies system executable filetype association
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Registry Run Keys / Startup Folder
2Event Triggered Execution
1Change Default File Association
1Privilege Escalation
Boot or Logon Autostart Execution
2Registry Run Keys / Startup Folder
2Event Triggered Execution
1Change Default File Association
1