General

  • Target

    SecuriteInfo.com.Win64.SpywareX-gen.2363.7900.exe

  • Size

    5.8MB

  • Sample

    240516-3ck4saea83

  • MD5

    5aa2f4388a1ee878437f7832e8629f07

  • SHA1

    c6ad227cb5b1a754345eb102b968311737d6b758

  • SHA256

    5e9b5112a3543de6423988ed59b3aa0e5ce687128b47ce1cd54c53257c9255b4

  • SHA512

    08a0c22fba584888e7177819be99822681692b19071745da0e7fc0b1d32e5d3115b4e59fab4321e63094a1cafad646301b9879e7ef320c546e00889e921b994a

  • SSDEEP

    98304:9hobmIOeD1C3cczb71QGQCPDbZfx8uOqV6lORkBMjq86uUTW04XkFD2XOkd:9hoBO8Cs8dQmRJ8dA6lakaqdVT/4XCDa

Malware Config

Targets

    • Target

      SecuriteInfo.com.Win64.SpywareX-gen.2363.7900.exe

    • Size

      5.8MB

    • MD5

      5aa2f4388a1ee878437f7832e8629f07

    • SHA1

      c6ad227cb5b1a754345eb102b968311737d6b758

    • SHA256

      5e9b5112a3543de6423988ed59b3aa0e5ce687128b47ce1cd54c53257c9255b4

    • SHA512

      08a0c22fba584888e7177819be99822681692b19071745da0e7fc0b1d32e5d3115b4e59fab4321e63094a1cafad646301b9879e7ef320c546e00889e921b994a

    • SSDEEP

      98304:9hobmIOeD1C3cczb71QGQCPDbZfx8uOqV6lORkBMjq86uUTW04XkFD2XOkd:9hoBO8Cs8dQmRJ8dA6lakaqdVT/4XCDa

    Score
    8/10
    • Command and Scripting Interpreter: PowerShell

      Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks