General

  • Target

    9fa54e32a10c32959af033a6f3b5a118.bin

  • Size

    590KB

  • Sample

    240613-cf5dqatgnq

  • MD5

    9fa54e32a10c32959af033a6f3b5a118

  • SHA1

    464b90aaad08aabd19c7919f34d0a8ceafd10666

  • SHA256

    88abe551cc9df4a7bda885717aa96c9a3419b951cccfca6e1acbbb76884cbea2

  • SHA512

    4f1f69d7b17a83668ec47a5ddd91d7a9eb049efcf99943809f8348a504a532e8d5e67e3cf1dac57fe9096254e91abecbba509ca803a0d5792b30902a1c3dcb56

  • SSDEEP

    12288:UZWtI6RkGeZJys73dOvXDpNjNe8XOdeZJys73dOvXDpNjNe8H:UuhaGeZJ8NI8UeZJ8NI8H

Malware Config

Targets

    • Target

      9fa54e32a10c32959af033a6f3b5a118.bin

    • Size

      590KB

    • MD5

      9fa54e32a10c32959af033a6f3b5a118

    • SHA1

      464b90aaad08aabd19c7919f34d0a8ceafd10666

    • SHA256

      88abe551cc9df4a7bda885717aa96c9a3419b951cccfca6e1acbbb76884cbea2

    • SHA512

      4f1f69d7b17a83668ec47a5ddd91d7a9eb049efcf99943809f8348a504a532e8d5e67e3cf1dac57fe9096254e91abecbba509ca803a0d5792b30902a1c3dcb56

    • SSDEEP

      12288:UZWtI6RkGeZJys73dOvXDpNjNe8XOdeZJys73dOvXDpNjNe8H:UuhaGeZJ8NI8UeZJ8NI8H

    • Disables service(s)

    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks