General

  • Target

    498ff7f06e9131ba036d185f311ca72f.exe

  • Size

    1.6MB

  • Sample

    240107-x94z9sdef2

  • MD5

    498ff7f06e9131ba036d185f311ca72f

  • SHA1

    5ff917251930d3454ef7994e6495b2a0ceeef95b

  • SHA256

    a1846d479bc31e8d0cebe23b60998b73b06b5833486c1a9a44816c02c7bd3f8d

  • SHA512

    d7fc1535e1f58dc68761fb03be0de3315db05bde9ba526b51b2956116d5215d141ca2db0ddfbd2ff64acc67247e2e82b2992a37cf1dffec79f2500a3c9af7986

  • SSDEEP

    24576:UuhaLNerQZb+md4wmXeZJ8NI8d2M+1OVOANerQZb+md4wmXeZJ8NI8d2M+1OVON:b2NerQZbd288daOQANerQZbd288daOQN

Score
10/10

Malware Config

Targets

    • Target

      498ff7f06e9131ba036d185f311ca72f.exe

    • Size

      1.6MB

    • MD5

      498ff7f06e9131ba036d185f311ca72f

    • SHA1

      5ff917251930d3454ef7994e6495b2a0ceeef95b

    • SHA256

      a1846d479bc31e8d0cebe23b60998b73b06b5833486c1a9a44816c02c7bd3f8d

    • SHA512

      d7fc1535e1f58dc68761fb03be0de3315db05bde9ba526b51b2956116d5215d141ca2db0ddfbd2ff64acc67247e2e82b2992a37cf1dffec79f2500a3c9af7986

    • SSDEEP

      24576:UuhaLNerQZb+md4wmXeZJ8NI8d2M+1OVOANerQZb+md4wmXeZJ8NI8d2M+1OVON:b2NerQZbd288daOQANerQZbd288daOQN

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks