General

  • Target

    493fcd64b3615b891687b870ce70807d.exe

  • Size

    1.0MB

  • Sample

    240107-x3cx7sdcc4

  • MD5

    493fcd64b3615b891687b870ce70807d

  • SHA1

    aa7d8232a0a6e3a50ba6efa4c1d7ec340127f811

  • SHA256

    a69daddff9353e2b8bf6af30e0c5fe120a1fbc3b9c47cf14335f9c0fab8d29fd

  • SHA512

    e9320c4ea10787e0c7cf0b7fd064daaf9004eaa5477ea56b8db6636f6bab8b3739368050d22bb5f18512b2ea7469cf3214822ad6f9fe7f39e12968e1a3f54d96

  • SSDEEP

    12288:UZWtI6Rk2erQZb+md4w1UIOcerQZb+md4w1U6:Uuha2erQZb+md4wmeerQZb+md4wm6

Score
10/10

Malware Config

Targets

    • Target

      493fcd64b3615b891687b870ce70807d.exe

    • Size

      1.0MB

    • MD5

      493fcd64b3615b891687b870ce70807d

    • SHA1

      aa7d8232a0a6e3a50ba6efa4c1d7ec340127f811

    • SHA256

      a69daddff9353e2b8bf6af30e0c5fe120a1fbc3b9c47cf14335f9c0fab8d29fd

    • SHA512

      e9320c4ea10787e0c7cf0b7fd064daaf9004eaa5477ea56b8db6636f6bab8b3739368050d22bb5f18512b2ea7469cf3214822ad6f9fe7f39e12968e1a3f54d96

    • SSDEEP

      12288:UZWtI6Rk2erQZb+md4w1UIOcerQZb+md4w1U6:Uuha2erQZb+md4wmeerQZb+md4wm6

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks