General
-
Target
Screenshot 2023-06-11 151022.png
-
Size
120KB
-
Sample
240419-zhqpnsfa88
-
MD5
82ad75bb40ce5e34097365a769a95c61
-
SHA1
5fe46c75b985df15b6439f1f16494eb981d1a794
-
SHA256
05cf58d928453f0ecb58ecb05bb5fa8513d0d16bf1b16941e6c0d9d9f33942bb
-
SHA512
4dd106c117640fb5874e4753b4a215172c32344e1f2525c279db3d3be518935e85ad5ea005bac396b2bc0df50a157307c45f206c542af78c8fc7368d32b9852c
-
SSDEEP
3072:8+ADBImp/Xi7ptqK1kSrnFzYsql1Khz8Mqv35Cg:8csXyrkSrFzRsBMk
Malware Config
Targets
-
-
Target
Screenshot 2023-06-11 151022.png
-
Size
120KB
-
MD5
82ad75bb40ce5e34097365a769a95c61
-
SHA1
5fe46c75b985df15b6439f1f16494eb981d1a794
-
SHA256
05cf58d928453f0ecb58ecb05bb5fa8513d0d16bf1b16941e6c0d9d9f33942bb
-
SHA512
4dd106c117640fb5874e4753b4a215172c32344e1f2525c279db3d3be518935e85ad5ea005bac396b2bc0df50a157307c45f206c542af78c8fc7368d32b9852c
-
SSDEEP
3072:8+ADBImp/Xi7ptqK1kSrnFzYsql1Khz8Mqv35Cg:8csXyrkSrFzRsBMk
Score8/10-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Registers COM server for autorun
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1