General

  • Target

    4a67f366202796ef78b0807d32ad2878

  • Size

    127KB

  • Sample

    240108-esbnaabhc4

  • MD5

    4a67f366202796ef78b0807d32ad2878

  • SHA1

    50d1a46cc8dcf72406c219d76cabae2e9ec2ca03

  • SHA256

    ab143960d5335a6cfc8ca7456093423756659ec0f708f8621f39b81dd38c15fb

  • SHA512

    8c8331e0cbefdc6da554088d1b2c81d734f8e041d7d6a36fab60575e1c94e0bd908579b498c533eaa28d472c13674e07e8adfe3bafd0c5a7f5274134fdfa8ac4

  • SSDEEP

    3072:Lwq6dPb7mf5ZYpu9rrPavkIkQeksnb/KMEAcugxOkloutP:LwVSZSmPukgQ3ex1oS

Malware Config

Targets

    • Target

      4a67f366202796ef78b0807d32ad2878

    • Size

      127KB

    • MD5

      4a67f366202796ef78b0807d32ad2878

    • SHA1

      50d1a46cc8dcf72406c219d76cabae2e9ec2ca03

    • SHA256

      ab143960d5335a6cfc8ca7456093423756659ec0f708f8621f39b81dd38c15fb

    • SHA512

      8c8331e0cbefdc6da554088d1b2c81d734f8e041d7d6a36fab60575e1c94e0bd908579b498c533eaa28d472c13674e07e8adfe3bafd0c5a7f5274134fdfa8ac4

    • SSDEEP

      3072:Lwq6dPb7mf5ZYpu9rrPavkIkQeksnb/KMEAcugxOkloutP:LwVSZSmPukgQ3ex1oS

    • Drops file in Drivers directory

    • Sets service image path in registry

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks