General
-
Target
EXEC MASS DM.rar
-
Size
10.6MB
-
Sample
240602-z966qsgf63
-
MD5
9bc7279fa865b0eefc4d317fbffe1ce9
-
SHA1
70473ffe31b769b1cb1e94e7fe350def7aa3c347
-
SHA256
a44884131f9059760a355597ae4136449273c1a2b3c590bb9d66dee9fefb73d8
-
SHA512
e0e7ae1b1b7c28be93ff1f499c9df48bd6ee730d95169866159db63c2412b3a93d6f8e9086fa28dc64e18934576b07912d96dd34eb5e19d259dfff33d36ac132
-
SSDEEP
196608:VUgSNAplPAk7J/bdbAxlXKbx74J5j9NE8EL2lk1sUtyEQzoEYeIhkH:MNAfZ/bV+JK17K9REetcybkbhkH
Behavioral task
behavioral1
Sample
EXEC MASS DM/EXEC MASS DM.exe
Resource
win11-20240426-en
Malware Config
Targets
-
-
Target
EXEC MASS DM/EXEC MASS DM.exe
-
Size
10.9MB
-
MD5
dfc126427f4061c2669c713f8ed6277b
-
SHA1
602a01a03e0fac12350b06693e7dabed7e3fba37
-
SHA256
69400dfaf7444bfe95aad5bf945b12d404bd5b62fb895d82dadd9548ed4a810b
-
SHA512
737e647c4330b57b2c5898936218f6fb937a143dc754ee0335b66ec4ea21021c18d3eeeba13e55aa69d186dae61311a032d5f0369a90f06f27495d9c3f034024
-
SSDEEP
196608:+Lavs+H7zj9AKm6gUU8gBk6bL2Vmd6+DnoulOToPVIn+LH/+zY+0T4YlhLT/AM:HD3GH6YkUL2Vmd6moFTodIn+LH/+z04
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Registers COM server for autorun
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops desktop.ini file(s)
-
Checks system information in the registry
System information is often read in order to detect sandboxing environments.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Registry Run Keys / Startup Folder
2Event Triggered Execution
1Change Default File Association
1