General

  • Target

    a732730a7cd5513c8a5f90c5dda28168.exe

  • Size

    1.4MB

  • Sample

    240107-x33hvscdcr

  • MD5

    a732730a7cd5513c8a5f90c5dda28168

  • SHA1

    42ebcedc4a48241475d61ae15f25cc58c022d5d9

  • SHA256

    4f198951e222198fef683f5c9409c0a03bfd30cdff98821ecef867eace4b6da8

  • SHA512

    9941f6475e865b93c083db876c56b82c770d818489aced944ff673e0a40cb61d3df2689cd1562ee5179bc5f83709003f387058caa5ba45f77f2e360cbfdb4e51

  • SSDEEP

    24576:UuhaZOieZJ8NI80OieZJ8NI8kOieZJ8NI80OieZJ8NI81hT:bR8t898t8LT

Score
10/10

Malware Config

Targets

    • Target

      a732730a7cd5513c8a5f90c5dda28168.exe

    • Size

      1.4MB

    • MD5

      a732730a7cd5513c8a5f90c5dda28168

    • SHA1

      42ebcedc4a48241475d61ae15f25cc58c022d5d9

    • SHA256

      4f198951e222198fef683f5c9409c0a03bfd30cdff98821ecef867eace4b6da8

    • SHA512

      9941f6475e865b93c083db876c56b82c770d818489aced944ff673e0a40cb61d3df2689cd1562ee5179bc5f83709003f387058caa5ba45f77f2e360cbfdb4e51

    • SSDEEP

      24576:UuhaZOieZJ8NI80OieZJ8NI8kOieZJ8NI80OieZJ8NI81hT:bR8t898t8LT

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks