General

  • Target

    SolarisBeta.exe

  • Size

    5.0MB

  • Sample

    240613-bfjlksybrc

  • MD5

    576d71ac4010bbf9044e56d692bb8947

  • SHA1

    575bdf8f082c2a9d1a663e3302f103ec57b1fa98

  • SHA256

    ab0bd10478af3c991b8a34cdcbbca8ffec60223cec748f9ab5f31acfab8eba80

  • SHA512

    302044edcafdd3bbcd348010b7009ec499039c2ffb98726a137b09ff119a2097cb5fd54f7d702d65bfbfdace2b7c7d3c1d6058cba5173343f3d6d1174362d365

  • SSDEEP

    49152:8gvUDWv4e4uPpV1wrb/T8vO90d7HjmAFd4A64nsfJJKyutrDb4HGw1lfVGlJS5Z+:r4e4uPpVm6gTVGIO7DfEc+el

Malware Config

Targets

    • Target

      SolarisBeta.exe

    • Size

      5.0MB

    • MD5

      576d71ac4010bbf9044e56d692bb8947

    • SHA1

      575bdf8f082c2a9d1a663e3302f103ec57b1fa98

    • SHA256

      ab0bd10478af3c991b8a34cdcbbca8ffec60223cec748f9ab5f31acfab8eba80

    • SHA512

      302044edcafdd3bbcd348010b7009ec499039c2ffb98726a137b09ff119a2097cb5fd54f7d702d65bfbfdace2b7c7d3c1d6058cba5173343f3d6d1174362d365

    • SSDEEP

      49152:8gvUDWv4e4uPpV1wrb/T8vO90d7HjmAFd4A64nsfJJKyutrDb4HGw1lfVGlJS5Z+:r4e4uPpVm6gTVGIO7DfEc+el

    • Sets service image path in registry

    • Stops running service(s)

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks