General
-
Target
75e99d89202640ee02d85880d62373f9
-
Size
272KB
-
Sample
240126-atjytsade9
-
MD5
75e99d89202640ee02d85880d62373f9
-
SHA1
d2e5e3982a0e77a33e78874f1f08768619cba88e
-
SHA256
3beb5160f3dc4b408f305c1eec4fd05f21cb6283209028c56a4f5d1de463ab90
-
SHA512
1c9dd3d1ff561d30c2093f1a4274fd2ab9bfb50194c05ded170fee175ce0a3939ac438db58c6ea4859aa8713420a053e3fd13d583535f48eb14db15f61e3b890
-
SSDEEP
6144:M2/NtDqqPPlpyeJBn7p4Kd2dUnAmp4HZRreEK:M2/NRnPLp4Kd5A+IZRPK
Static task
static1
Behavioral task
behavioral1
Sample
75e99d89202640ee02d85880d62373f9.exe
Resource
win7-20231215-en
Malware Config
Targets
-
-
Target
75e99d89202640ee02d85880d62373f9
-
Size
272KB
-
MD5
75e99d89202640ee02d85880d62373f9
-
SHA1
d2e5e3982a0e77a33e78874f1f08768619cba88e
-
SHA256
3beb5160f3dc4b408f305c1eec4fd05f21cb6283209028c56a4f5d1de463ab90
-
SHA512
1c9dd3d1ff561d30c2093f1a4274fd2ab9bfb50194c05ded170fee175ce0a3939ac438db58c6ea4859aa8713420a053e3fd13d583535f48eb14db15f61e3b890
-
SSDEEP
6144:M2/NtDqqPPlpyeJBn7p4Kd2dUnAmp4HZRreEK:M2/NRnPLp4Kd5A+IZRPK
-
Modifies security service
-
Disables taskbar notifications via registry modification
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Registry Run Keys / Startup Folder
2Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
2Registry Run Keys / Startup Folder
2Create or Modify System Process
1Windows Service
1