General

  • Target

    ae17ef325a1db4139e9090b07f996e99.exe

  • Size

    1.7MB

  • Sample

    240107-yc6chacgem

  • MD5

    ae17ef325a1db4139e9090b07f996e99

  • SHA1

    760786ce6036a8f3bf954de53ed1a0a07cba23c9

  • SHA256

    f6f6c2feba4ee906ce5865601a8b36bda692ffb70e49751552e9b88b53b971d0

  • SHA512

    7d2ead21688cbfc5b86265fd6c83d37f04007f17fbf7ec9c00e050b93e1c878af34f2994704a0a68692ebcfd4fda4bd3a29b9ac28bbeb6b9a020dd903cb43d6c

  • SSDEEP

    12288:UZWtI6RkqOB0fOjOB0Ru9OwOB0fOjOB0RudOwOB0fOjOB0Ru9OwOB0fOjOB0RuH+:UuhaqOZO9OZOtOZO9OZOi

Score
10/10

Malware Config

Targets

    • Target

      ae17ef325a1db4139e9090b07f996e99.exe

    • Size

      1.7MB

    • MD5

      ae17ef325a1db4139e9090b07f996e99

    • SHA1

      760786ce6036a8f3bf954de53ed1a0a07cba23c9

    • SHA256

      f6f6c2feba4ee906ce5865601a8b36bda692ffb70e49751552e9b88b53b971d0

    • SHA512

      7d2ead21688cbfc5b86265fd6c83d37f04007f17fbf7ec9c00e050b93e1c878af34f2994704a0a68692ebcfd4fda4bd3a29b9ac28bbeb6b9a020dd903cb43d6c

    • SSDEEP

      12288:UZWtI6RkqOB0fOjOB0Ru9OwOB0fOjOB0RudOwOB0fOjOB0Ru9OwOB0fOjOB0RuH+:UuhaqOZO9OZOtOZO9OZOi

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks