General

  • Target

    VirusShare_0a0391ea8aea3f9c5c78cbf1efffecb0.exe

  • Size

    117KB

  • Sample

    240302-ryphjsee75

  • MD5

    0a0391ea8aea3f9c5c78cbf1efffecb0

  • SHA1

    68ac29ee1202ac6d92c6925c80ec254ea20ac347

  • SHA256

    749ddbbeb02965639c532bff4d5736372ba14ab6b2b1b3b3aaae07ea20a6285b

  • SHA512

    83314f0ddd387c0354da77950f3ab6b5f77d5462df21a6bb5e7b91f877b462e83833e21c6e2bf809682467a7efac152700f9b0b8e8875cffe3e194d76499d3d4

  • SSDEEP

    1536:DPKmZ9YDtkFDNqrD1cLi0VJKdosrQgRA1UaalYmxNR6KK9Ew3Oqc8YV:DPKmZ9euDNqMohRA1U9txq39P3kV

Score
8/10

Malware Config

Targets

    • Target

      VirusShare_0a0391ea8aea3f9c5c78cbf1efffecb0.exe

    • Size

      117KB

    • MD5

      0a0391ea8aea3f9c5c78cbf1efffecb0

    • SHA1

      68ac29ee1202ac6d92c6925c80ec254ea20ac347

    • SHA256

      749ddbbeb02965639c532bff4d5736372ba14ab6b2b1b3b3aaae07ea20a6285b

    • SHA512

      83314f0ddd387c0354da77950f3ab6b5f77d5462df21a6bb5e7b91f877b462e83833e21c6e2bf809682467a7efac152700f9b0b8e8875cffe3e194d76499d3d4

    • SSDEEP

      1536:DPKmZ9YDtkFDNqrD1cLi0VJKdosrQgRA1UaalYmxNR6KK9Ew3Oqc8YV:DPKmZ9euDNqMohRA1U9txq39P3kV

    Score
    8/10
    • Disables Task Manager via registry modification

    • Adds Run key to start application

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks