General

  • Target

    ad1191a7fb2bfaf76fd70db67e931d50

  • Size

    452KB

  • Sample

    240228-2wsgjafh64

  • MD5

    ad1191a7fb2bfaf76fd70db67e931d50

  • SHA1

    495ca456e64cc85c081201b65c150a46b4d52032

  • SHA256

    7e4425228a5986dffa6891f72d49c8b0f662655e2e700c153e13d3e48f0f4a2b

  • SHA512

    c5d51b39b657a46d4ca14880314fa9f3638386d3ba99a25398c5c9de1a0bfc83f5ee4522ed51e90310683142d801d563b02b4e49e5bf44834724437bf660c818

  • SSDEEP

    12288:XvxZiduwZWeDcc/777777wL1D2Ct1DkkLB31inMwUpN14GD35C7:Xv/iYwZhkLR2CttkkL5cUtXJe

Malware Config

Targets

    • Target

      ad1191a7fb2bfaf76fd70db67e931d50

    • Size

      452KB

    • MD5

      ad1191a7fb2bfaf76fd70db67e931d50

    • SHA1

      495ca456e64cc85c081201b65c150a46b4d52032

    • SHA256

      7e4425228a5986dffa6891f72d49c8b0f662655e2e700c153e13d3e48f0f4a2b

    • SHA512

      c5d51b39b657a46d4ca14880314fa9f3638386d3ba99a25398c5c9de1a0bfc83f5ee4522ed51e90310683142d801d563b02b4e49e5bf44834724437bf660c818

    • SSDEEP

      12288:XvxZiduwZWeDcc/777777wL1D2Ct1DkkLB31inMwUpN14GD35C7:Xv/iYwZhkLR2CttkkL5cUtXJe

    • Modifies firewall policy service

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks