General

  • Target

    9039ca24a409c48550e411c82552217b

  • Size

    20KB

  • Sample

    240204-1jgzladdgn

  • MD5

    9039ca24a409c48550e411c82552217b

  • SHA1

    6f7c9adba7afdacfa46f3d5c1d77db02bb1cc073

  • SHA256

    b85332ad5c3d836087ed1e93469b6fa967987b00d8197a6366ab52a9f988f2f5

  • SHA512

    cf9e1223fb46d0bb7002fe8e49306bda2afb0e16ba6034d52f2ae9fe9960afec71fd14179693ee69a19502d87b2704a6f142ddd5c562d19cf0e5d3531549045b

  • SSDEEP

    384:HpVVboI0UhfGgzGqizsLNZcwS0b5rCdvN1s22r0SFOYVlTl+prxDe4vUd:HiK53GxYLTcwTEdvYtr0nol2xDe4v

Malware Config

Targets

    • Target

      9039ca24a409c48550e411c82552217b

    • Size

      20KB

    • MD5

      9039ca24a409c48550e411c82552217b

    • SHA1

      6f7c9adba7afdacfa46f3d5c1d77db02bb1cc073

    • SHA256

      b85332ad5c3d836087ed1e93469b6fa967987b00d8197a6366ab52a9f988f2f5

    • SHA512

      cf9e1223fb46d0bb7002fe8e49306bda2afb0e16ba6034d52f2ae9fe9960afec71fd14179693ee69a19502d87b2704a6f142ddd5c562d19cf0e5d3531549045b

    • SSDEEP

      384:HpVVboI0UhfGgzGqizsLNZcwS0b5rCdvN1s22r0SFOYVlTl+prxDe4vUd:HiK53GxYLTcwTEdvYtr0nol2xDe4v

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks