Overview

overview

8

Static

static

1

Download (1).mp4

windows11-21h2-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Download (1).mp4

  • Size

    452KB

  • Sample

    240312-zkjddaaf3t

  • MD5

    9bbe26eb2991c0abaede76f092483dd5

  • SHA1

    89cc62b3451e86010fa047fb91df598ade3eecc9

  • SHA256

    8248e415d71e8eeabb7f4b651a88f2ad3cb17332055079ac6b4d717b7f735c00

  • SHA512

    ab0caa21cdf88e2f930ceaeac95c4d0760d2a50b69058c2dfe285ba82f344119e6fbe8544fd42ca5f217947c7f055c1012256569ad33e18b04557d0892017c7f

  • SSDEEP

    12288:TyjzW8aL7/nyXI+xCvT9y77bRSjhs5U+MuP:7X/n5+gvJJj4RD

Score
8/10
discoveryevasion

Malware Config

Targets

    • Target

      Download (1).mp4

    • Size

      452KB

    • MD5

      9bbe26eb2991c0abaede76f092483dd5

    • SHA1

      89cc62b3451e86010fa047fb91df598ade3eecc9

    • SHA256

      8248e415d71e8eeabb7f4b651a88f2ad3cb17332055079ac6b4d717b7f735c00

    • SHA512

      ab0caa21cdf88e2f930ceaeac95c4d0760d2a50b69058c2dfe285ba82f344119e6fbe8544fd42ca5f217947c7f055c1012256569ad33e18b04557d0892017c7f

    • SSDEEP

      12288:TyjzW8aL7/nyXI+xCvT9y77bRSjhs5U+MuP:7X/n5+gvJJj4RD

    Score
    8/10
    discoveryevasion

    • Downloads MZ/PE file

    • Stops running service(s)

      evasion

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies file permissions

      discovery

    • Checks for any installed AV software in registry

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks