General
-
Target
dc864750ce373f5b116f0b2e57720c48
-
Size
287KB
-
Sample
240321-y3anhshc65
-
MD5
dc864750ce373f5b116f0b2e57720c48
-
SHA1
35572efd585b1de5737c81554bc8342a896aaf0c
-
SHA256
4ed2308b10226f5dece77a9d581d19f52040d7108eb54106bc3beb8b1f23b954
-
SHA512
504b1edddba1cfd97cbe160ad08948b0e781edc0d0b249acca0afcaabefdf2463b9c031a6fc298cb7544490883e5101db8c4296aef452eb92b30a9e90e7c7977
-
SSDEEP
6144:wwYDnroY0Sszp1V8qipl5e7zqz7YFNJfbHz1zgCHyZ388bsXO7Y:8DnroGsNX8qi1e7zqHEPbhzgCHyqiCb
Static task
static1
Behavioral task
behavioral1
Sample
dc864750ce373f5b116f0b2e57720c48.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
dc864750ce373f5b116f0b2e57720c48
-
Size
287KB
-
MD5
dc864750ce373f5b116f0b2e57720c48
-
SHA1
35572efd585b1de5737c81554bc8342a896aaf0c
-
SHA256
4ed2308b10226f5dece77a9d581d19f52040d7108eb54106bc3beb8b1f23b954
-
SHA512
504b1edddba1cfd97cbe160ad08948b0e781edc0d0b249acca0afcaabefdf2463b9c031a6fc298cb7544490883e5101db8c4296aef452eb92b30a9e90e7c7977
-
SSDEEP
6144:wwYDnroY0Sszp1V8qipl5e7zqz7YFNJfbHz1zgCHyZ388bsXO7Y:8DnroGsNX8qi1e7zqHEPbhzgCHyqiCb
-
Modifies security service
-
Disables taskbar notifications via registry modification
-
Modifies Installed Components in the registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Matrix ATT&CK v13
Persistence
Create or Modify System Process
1Windows Service
1Boot or Logon Autostart Execution
2Registry Run Keys / Startup Folder
2Privilege Escalation
Create or Modify System Process
1Windows Service
1Boot or Logon Autostart Execution
2Registry Run Keys / Startup Folder
2