General

  • Target

    15ab88c584de8b200d16350f4277b3b4.exe

  • Size

    20KB

  • Sample

    240108-yx7fashadm

  • MD5

    15ab88c584de8b200d16350f4277b3b4

  • SHA1

    5c0cf2f50b292a1ced825295daff10eece72fddd

  • SHA256

    a0ddd5f4e7afc3dd5d20a063dd441eb899443de24c04c9e8909cc77767aaefa3

  • SHA512

    b20b12e537d4faf68581fd0214dfbaf028293713adbb50c0bc19361c2915dc65d5abad68bfd2808de101f5b0c70d8ee95238b03735ea1bed4a213365708ff219

  • SSDEEP

    384:UBWoC5GDr6wc/w3HgM6vDUTAXBGCVf4WVlFvXfP/gXBhGzf:rRkiLw3HsDSARGG/fycj

Malware Config

Targets

    • Target

      15ab88c584de8b200d16350f4277b3b4.exe

    • Size

      20KB

    • MD5

      15ab88c584de8b200d16350f4277b3b4

    • SHA1

      5c0cf2f50b292a1ced825295daff10eece72fddd

    • SHA256

      a0ddd5f4e7afc3dd5d20a063dd441eb899443de24c04c9e8909cc77767aaefa3

    • SHA512

      b20b12e537d4faf68581fd0214dfbaf028293713adbb50c0bc19361c2915dc65d5abad68bfd2808de101f5b0c70d8ee95238b03735ea1bed4a213365708ff219

    • SSDEEP

      384:UBWoC5GDr6wc/w3HgM6vDUTAXBGCVf4WVlFvXfP/gXBhGzf:rRkiLw3HsDSARGG/fycj

    • Windows security bypass

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Windows security modification

    • Modifies WinLogon

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.