General

  • Target

    a7ae23d81209a74a42d68a9669fee2ab.exe

  • Size

    1.4MB

  • Sample

    240107-xz2r6accbj

  • MD5

    a7ae23d81209a74a42d68a9669fee2ab

  • SHA1

    79a9d1b924e5d429a9e5cc9572edddd5ae469839

  • SHA256

    19a61a02e9cbab7092903708964ea1e66c258be9b39999c469d26051810744a2

  • SHA512

    ef09457bb5e74938b526af84cb69702b162d4bed8a65949c5844ac686a891220c409e6b87095243049dc132a4c4917cef0148dba8a839d6401fc104539c5b30c

  • SSDEEP

    12288:UZWtI6Rk7bu9O1bu9O1bu9O1bu9O1bu9O1buPs/oi4:Uuha7jjjjjIOn4

Score
10/10

Malware Config

Targets

    • Target

      a7ae23d81209a74a42d68a9669fee2ab.exe

    • Size

      1.4MB

    • MD5

      a7ae23d81209a74a42d68a9669fee2ab

    • SHA1

      79a9d1b924e5d429a9e5cc9572edddd5ae469839

    • SHA256

      19a61a02e9cbab7092903708964ea1e66c258be9b39999c469d26051810744a2

    • SHA512

      ef09457bb5e74938b526af84cb69702b162d4bed8a65949c5844ac686a891220c409e6b87095243049dc132a4c4917cef0148dba8a839d6401fc104539c5b30c

    • SSDEEP

      12288:UZWtI6Rk7bu9O1bu9O1bu9O1bu9O1bu9O1buPs/oi4:Uuha7jjjjjIOn4

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks