General
-
Target
e4a21abe4200becc477eae278891ec002737a2321dd589c11efec019bb34fadb
-
Size
172KB
-
Sample
240517-f2s5csbd39
-
MD5
40c6c0d75815869cf2a5d79d5623800f
-
SHA1
e632d1eaf55c4a8c6085bd53f1b6011d20fefbe0
-
SHA256
e4a21abe4200becc477eae278891ec002737a2321dd589c11efec019bb34fadb
-
SHA512
a6d92d261a7f011283985d818e9847d44444d4c67ec5a6c2bf45013cd90f8c5f57e58256346a20e3e6e4f3c395c25cc5344717bf2001c3966fe711f4eaa22346
-
SSDEEP
768:zeNOwWn/HB8HMND8DBbYPxMDeNOwWn/HB8iaCz:zeNCn/HB8HMNYDBbZDeNCn/HB8irz
Malware Config
Targets
-
-
Target
e4a21abe4200becc477eae278891ec002737a2321dd589c11efec019bb34fadb
-
Size
172KB
-
MD5
40c6c0d75815869cf2a5d79d5623800f
-
SHA1
e632d1eaf55c4a8c6085bd53f1b6011d20fefbe0
-
SHA256
e4a21abe4200becc477eae278891ec002737a2321dd589c11efec019bb34fadb
-
SHA512
a6d92d261a7f011283985d818e9847d44444d4c67ec5a6c2bf45013cd90f8c5f57e58256346a20e3e6e4f3c395c25cc5344717bf2001c3966fe711f4eaa22346
-
SSDEEP
768:zeNOwWn/HB8HMND8DBbYPxMDeNOwWn/HB8iaCz:zeNCn/HB8HMNYDBbZDeNCn/HB8irz
Score10/10-
Modifies visibility of file extensions in Explorer
-
Executes dropped EXE
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2