General

  • Target

    8f8f7c92c5c1f7f45cfe9b7593412442

  • Size

    135KB

  • Sample

    240204-tc5czsffbp

  • MD5

    8f8f7c92c5c1f7f45cfe9b7593412442

  • SHA1

    e4a710144381c78c06eae8db94e8414f4ee08dd2

  • SHA256

    7dd82e4861d4f672a9d979156623d6f4cf8f9f981f89966f4e6af2c43d54da02

  • SHA512

    cdb24b1736fd16642100948f4c1a86bbff548001bfd7eccbdc64751af2b7a483e6acbf7d90811f05b39334a87022bb28d1a24d5b27dcb7898c03c8d768260bd7

  • SSDEEP

    3072:EUgwoSjdhgGHWlOQ0lK8jm1vhIEASOs/JvhxwIJb/GlL2uP/HA:tdoA2lOnlK8j+qCOsPxwIJq2

Malware Config

Targets

    • Target

      8f8f7c92c5c1f7f45cfe9b7593412442

    • Size

      135KB

    • MD5

      8f8f7c92c5c1f7f45cfe9b7593412442

    • SHA1

      e4a710144381c78c06eae8db94e8414f4ee08dd2

    • SHA256

      7dd82e4861d4f672a9d979156623d6f4cf8f9f981f89966f4e6af2c43d54da02

    • SHA512

      cdb24b1736fd16642100948f4c1a86bbff548001bfd7eccbdc64751af2b7a483e6acbf7d90811f05b39334a87022bb28d1a24d5b27dcb7898c03c8d768260bd7

    • SSDEEP

      3072:EUgwoSjdhgGHWlOQ0lK8jm1vhIEASOs/JvhxwIJb/GlL2uP/HA:tdoA2lOnlK8j+qCOsPxwIJq2

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Modifies AppInit DLL entries

    • Loads dropped DLL

    • Adds Run key to start application

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks