General

  • Target

    d4d 3.zip

  • Size

    55.8MB

  • Sample

    240118-22sdqaebak

  • MD5

    bea4294a2c1fc060c18eeceef683e503

  • SHA1

    0b9beb4149471ac82aa40a6666207e4dc9d00e55

  • SHA256

    5a2d8de698f3df73c7ddfe8652d62cd408fd8e8c218bfbb35a5e52e450e62440

  • SHA512

    9ca3a995908114e1cf0cd7ecdb6d5eb045189ac441d297cf1f7b33250ace7676426185c31807347062714ed22ee5f8fd5f5480944602813fd17aba3baae4c8c4

  • SSDEEP

    1572864:d8VHOsuh8LdBgsq4NEVTSTrVqcbmddvYZ/lHF57fZ8:d8VHOtuBgslu1aAcaYZ9HF57fK

Malware Config

Targets

    • Target

      d4d.exe

    • Size

      56.0MB

    • MD5

      a982ad6b32f9230a3278cd8ca09d3fec

    • SHA1

      07d75ad21dc81ac93ac2874b2db38f650e989dbf

    • SHA256

      5eba59d4f103b1f3f8f2b4cd27e6d33ff7cdbe383c7e1a947cf6d8fae1f5dab7

    • SHA512

      e84468d8b5eddb488ebe1bdc32f6fdf185175b5c629965e1876b80aa41b3901bb2772923ba99efde484d78b44600ecd6237a3ee41381a71da840a4ad5cde472a

    • SSDEEP

      1572864:cBoIQ3jmDYSk8IpG7V+VPhqcLE7YhjCYWyUGyHrX:cBoI+tSkB05awcvhuY9UFHr

    • Enumerates VirtualBox DLL files

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks