General

  • Target

    CustomRP.1.17.20.exe

  • Size

    6.3MB

  • Sample

    240222-y5xwtseg3s

  • MD5

    cc080cc12cd5372be2610f6038fae99b

  • SHA1

    2347c627519578d180fb9fd9bf44b7f3f0be8ff9

  • SHA256

    8be0a8ba506a52d5cd53738635400ef35217ea3bf5ffceba8bc254a770b589fd

  • SHA512

    96499d31c65dd13b7d9eb86be1f2c7abc602063e5941a7b067814dc6c67bead65ceed1c6dac64dbab59035d51e1b90056591fcbde93b63f8adb64d88094ed93c

  • SSDEEP

    196608:OVrrMxrPT5cYVNCuK3Wh0AO5KtTHCx7h+:prr+YVNCuK3xAOott

Score
7/10

Malware Config

Targets

    • Target

      CustomRP.1.17.20.exe

    • Size

      6.3MB

    • MD5

      cc080cc12cd5372be2610f6038fae99b

    • SHA1

      2347c627519578d180fb9fd9bf44b7f3f0be8ff9

    • SHA256

      8be0a8ba506a52d5cd53738635400ef35217ea3bf5ffceba8bc254a770b589fd

    • SHA512

      96499d31c65dd13b7d9eb86be1f2c7abc602063e5941a7b067814dc6c67bead65ceed1c6dac64dbab59035d51e1b90056591fcbde93b63f8adb64d88094ed93c

    • SSDEEP

      196608:OVrrMxrPT5cYVNCuK3Wh0AO5KtTHCx7h+:prr+YVNCuK3xAOott

    Score
    7/10
    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks