General

  • Target

    a754b0a3e6c81e5c6c74508e6c251b35.exe

  • Size

    597KB

  • Sample

    240107-x3gamadcc9

  • MD5

    a754b0a3e6c81e5c6c74508e6c251b35

  • SHA1

    503dda3c06e7caba713cbbca11cb9c5da2da9483

  • SHA256

    ce6b9254135c778d9acabac545328188aa076978f310aa62c725c8b9349aec72

  • SHA512

    5eb1ac6ab4dfcbb313fa57cd7276570c61eaf969ad3fa8bb97ef0d3a4bc1d2eb63151ba54fc5c75f22cd60d24c1112a60b980013954ac859ab83d3bfcb5219c4

  • SSDEEP

    12288:UZWtI6RkHeZJys73dOvXDpNjNe8NuPupOB0Jut:UuhaHeZJ8NI8nOB

Score
10/10

Malware Config

Targets

    • Target

      a754b0a3e6c81e5c6c74508e6c251b35.exe

    • Size

      597KB

    • MD5

      a754b0a3e6c81e5c6c74508e6c251b35

    • SHA1

      503dda3c06e7caba713cbbca11cb9c5da2da9483

    • SHA256

      ce6b9254135c778d9acabac545328188aa076978f310aa62c725c8b9349aec72

    • SHA512

      5eb1ac6ab4dfcbb313fa57cd7276570c61eaf969ad3fa8bb97ef0d3a4bc1d2eb63151ba54fc5c75f22cd60d24c1112a60b980013954ac859ab83d3bfcb5219c4

    • SSDEEP

      12288:UZWtI6RkHeZJys73dOvXDpNjNe8NuPupOB0Jut:UuhaHeZJ8NI8nOB

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks