General

  • Target

    7c0f4b72e0f50be60c8bd6b181bffec045bc7beab018529a3c8a0d693dc0bfde

  • Size

    46KB

  • Sample

    240603-3a516sdf24

  • MD5

    997373a14692eb176dd5ef11821a688a

  • SHA1

    4a2fb57d478253d88ede3d1be2986d28a0e781b3

  • SHA256

    7c0f4b72e0f50be60c8bd6b181bffec045bc7beab018529a3c8a0d693dc0bfde

  • SHA512

    9d945fb9033ac1d5bbb34dd9be07df63995a2f6becb27d3d779f4de4d3455633875521effaf04d19334fbdf39ec781056fd6f1000e3b74464f389cd5b83f64bd

  • SSDEEP

    768:WAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGVAQv9Ut:RUNHFKQbIkHvGkAn

Malware Config

Targets

    • Target

      7c0f4b72e0f50be60c8bd6b181bffec045bc7beab018529a3c8a0d693dc0bfde

    • Size

      46KB

    • MD5

      997373a14692eb176dd5ef11821a688a

    • SHA1

      4a2fb57d478253d88ede3d1be2986d28a0e781b3

    • SHA256

      7c0f4b72e0f50be60c8bd6b181bffec045bc7beab018529a3c8a0d693dc0bfde

    • SHA512

      9d945fb9033ac1d5bbb34dd9be07df63995a2f6becb27d3d779f4de4d3455633875521effaf04d19334fbdf39ec781056fd6f1000e3b74464f389cd5b83f64bd

    • SSDEEP

      768:WAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGVAQv9Ut:RUNHFKQbIkHvGkAn

    • Windows security bypass

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

    • Modifies WinLogon

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks