General
-
Target
b412d69482a153f90935c229afe002a8
-
Size
286KB
-
Sample
240305-hrn4rshb8w
-
MD5
b412d69482a153f90935c229afe002a8
-
SHA1
bfa10911dbc7a0bdbb3d2180b69e10ace11298d6
-
SHA256
c7fb67d41b823f97878fd7de4aeac6c3cfb5451138ba0de353567737428569d4
-
SHA512
3a714a6bf4d56096518d2ac23a63d42bc13f69c278895067903af777e507dafdbe34219c4d8add3d16c3abd82a41f6e7f4aa687b526f9436bcd85a62d4616b50
-
SSDEEP
6144:Qh11KV5oTsZNyh0p9/gIb4Cb2Th1wCcLfMdMGqKQuKzDg:QZKV0GZ3Md1wRmMKgg
Static task
static1
Behavioral task
behavioral1
Sample
b412d69482a153f90935c229afe002a8.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
b412d69482a153f90935c229afe002a8
-
Size
286KB
-
MD5
b412d69482a153f90935c229afe002a8
-
SHA1
bfa10911dbc7a0bdbb3d2180b69e10ace11298d6
-
SHA256
c7fb67d41b823f97878fd7de4aeac6c3cfb5451138ba0de353567737428569d4
-
SHA512
3a714a6bf4d56096518d2ac23a63d42bc13f69c278895067903af777e507dafdbe34219c4d8add3d16c3abd82a41f6e7f4aa687b526f9436bcd85a62d4616b50
-
SSDEEP
6144:Qh11KV5oTsZNyh0p9/gIb4Cb2Th1wCcLfMdMGqKQuKzDg:QZKV0GZ3Md1wRmMKgg
-
Modifies security service
-
Disables taskbar notifications via registry modification
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Matrix ATT&CK v13
Persistence
Create or Modify System Process
1Windows Service
1Boot or Logon Autostart Execution
2Registry Run Keys / Startup Folder
2Privilege Escalation
Create or Modify System Process
1Windows Service
1Boot or Logon Autostart Execution
2Registry Run Keys / Startup Folder
2