General

  • Target

    7553d1bda14b8d00b5df812187fdd95d68dc8deff4b2a93643fff7b3b3b9e941

  • Size

    89KB

  • Sample

    240603-21v38adb64

  • MD5

    4fda8699cba18d670f834f4744605d0f

  • SHA1

    502f8ec0a0d9cb1494a890ef3b1f5034873ec729

  • SHA256

    7553d1bda14b8d00b5df812187fdd95d68dc8deff4b2a93643fff7b3b3b9e941

  • SHA512

    b3aa990018e94c8d40dcb927221a2ee190775db7f4b761bf8332bdf0876688f484e718e9ab6838de98829ab76b9ed434bf270e4d18224e0e867e267586983919

  • SSDEEP

    1536:71sMveb4lR0daHy9v7Zc86y9U4AFRfBWAEnL:BDeb4T0daHy9DZc86yGUtnL

Score
10/10

Malware Config

Targets

    • Target

      7553d1bda14b8d00b5df812187fdd95d68dc8deff4b2a93643fff7b3b3b9e941

    • Size

      89KB

    • MD5

      4fda8699cba18d670f834f4744605d0f

    • SHA1

      502f8ec0a0d9cb1494a890ef3b1f5034873ec729

    • SHA256

      7553d1bda14b8d00b5df812187fdd95d68dc8deff4b2a93643fff7b3b3b9e941

    • SHA512

      b3aa990018e94c8d40dcb927221a2ee190775db7f4b761bf8332bdf0876688f484e718e9ab6838de98829ab76b9ed434bf270e4d18224e0e867e267586983919

    • SSDEEP

      1536:71sMveb4lR0daHy9v7Zc86y9U4AFRfBWAEnL:BDeb4T0daHy9DZc86yGUtnL

    Score
    10/10
    • Modifies WinLogon for persistence

    • Modifies visibility of file extensions in Explorer

    • Modifies visiblity of hidden/system files in Explorer

    • Detects executables packed with ASPack

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks