General

  • Target

    46e864653c8167b1fc18657f3260edb6

  • Size

    456KB

  • Sample

    240106-w6fmtsehd3

  • MD5

    46e864653c8167b1fc18657f3260edb6

  • SHA1

    be15518b5c076a4aa7d8485cdfe3866796639bc9

  • SHA256

    df8904d0b717773bd18cb33b56bec2b315c0c768276d070b85d4cd977ee46cc3

  • SHA512

    2edd6074b30dd3228edca73dd50810afd7f0c225bd0d4deef0b2a105397ab3692f0906ffa3fd5db3bc9d0e9c4a81c20951637e106eb03822d3f86408d96986ac

  • SSDEEP

    12288:GLti7E6uK3LYfPiaDctwQUjCsxRmVRJjt:i0PuDfaaQtLUnxRmfjt

Malware Config

Targets

    • Target

      46e864653c8167b1fc18657f3260edb6

    • Size

      456KB

    • MD5

      46e864653c8167b1fc18657f3260edb6

    • SHA1

      be15518b5c076a4aa7d8485cdfe3866796639bc9

    • SHA256

      df8904d0b717773bd18cb33b56bec2b315c0c768276d070b85d4cd977ee46cc3

    • SHA512

      2edd6074b30dd3228edca73dd50810afd7f0c225bd0d4deef0b2a105397ab3692f0906ffa3fd5db3bc9d0e9c4a81c20951637e106eb03822d3f86408d96986ac

    • SSDEEP

      12288:GLti7E6uK3LYfPiaDctwQUjCsxRmVRJjt:i0PuDfaaQtLUnxRmfjt

    • Windows security bypass

    • Disables taskbar notifications via registry modification

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks