General
-
Target
mogging background.png
-
Size
467KB
-
Sample
240305-yaxbtafc21
-
MD5
03f24684f9060a3b0689a96463a0a507
-
SHA1
ccc9549a88740a73d77568c8de2e2a181dc3a4ff
-
SHA256
30dd18e43906fd590eea0f24536e68beb1bf07dc19d80fbb53bfc6d22eba4eb6
-
SHA512
0460ebfbf3e127fd974e57f74df37a3a994bc0cc7e396d13314af23300f106ea2868be79b5a7408124e1b4479656f8c7065cc1ccf071a27f6c354b20d52024bb
-
SSDEEP
12288:c8SJ4B200e1VBLF2NdwSPOp5Y5SqXJq6vOwkTi:c9OB200e1VBLINFW3DqM0Xke
Static task
static1
Behavioral task
behavioral1
Sample
mogging background.png
Resource
win11-20240221-en
Malware Config
Extracted
C:\Users\Admin\Downloads\@[email protected]
wannacry
12t9YDPgwueZ9NyMgw519p7AA8isjr6SMw
Targets
-
-
Target
mogging background.png
-
Size
467KB
-
MD5
03f24684f9060a3b0689a96463a0a507
-
SHA1
ccc9549a88740a73d77568c8de2e2a181dc3a4ff
-
SHA256
30dd18e43906fd590eea0f24536e68beb1bf07dc19d80fbb53bfc6d22eba4eb6
-
SHA512
0460ebfbf3e127fd974e57f74df37a3a994bc0cc7e396d13314af23300f106ea2868be79b5a7408124e1b4479656f8c7065cc1ccf071a27f6c354b20d52024bb
-
SSDEEP
12288:c8SJ4B200e1VBLF2NdwSPOp5Y5SqXJq6vOwkTi:c9OB200e1VBLINFW3DqM0Xke
-
Downloads MZ/PE file
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies file permissions
-
Adds Run key to start application
-
Legitimate hosting services abused for malware hosting/C2
-
Sets desktop wallpaper using registry
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1