General

  • Target

    abd477c9973d036384d59f1cac6d0263.exe

  • Size

    1.0MB

  • Sample

    240107-x1h2fadbf9

  • MD5

    abd477c9973d036384d59f1cac6d0263

  • SHA1

    2a2c3279f617de64d27e802071a9f03c7ac482b7

  • SHA256

    8b3e4514031d4dd1d19bd60744b2cf78d4ddf92bb2c2d958cc7664afa4382ce3

  • SHA512

    985fee5b022fecbcad3acf76db3218709c8c95696bce365852c1c1e56b82874f90f855052eb0ba6b00dacd91eb622d921fe9dbdba2c6fedf23167c357959584d

  • SSDEEP

    24576:Uuha/eZJ8NI8NeZJ8NI8DerQZb+md4wmLGzVkUetVI5uY:bt8a8DerQZbd2PkZuY

Score
10/10

Malware Config

Targets

    • Target

      abd477c9973d036384d59f1cac6d0263.exe

    • Size

      1.0MB

    • MD5

      abd477c9973d036384d59f1cac6d0263

    • SHA1

      2a2c3279f617de64d27e802071a9f03c7ac482b7

    • SHA256

      8b3e4514031d4dd1d19bd60744b2cf78d4ddf92bb2c2d958cc7664afa4382ce3

    • SHA512

      985fee5b022fecbcad3acf76db3218709c8c95696bce365852c1c1e56b82874f90f855052eb0ba6b00dacd91eb622d921fe9dbdba2c6fedf23167c357959584d

    • SSDEEP

      24576:Uuha/eZJ8NI8NeZJ8NI8DerQZb+md4wmLGzVkUetVI5uY:bt8a8DerQZbd2PkZuY

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks