Resubmissions

24-06-2024 15:05

240624-sf9w7s1hmm 10

24-06-2024 14:56

240624-sbev9sxhlc 10

General

  • Target

    Carpe-Rel.zip

  • Size

    7.9MB

  • Sample

    240624-sf9w7s1hmm

  • MD5

    4dc57d99b8fe3c2d430e5447cac702b1

  • SHA1

    0d4b5aab897660ae6e810c0eb722bf293f6ba386

  • SHA256

    349e17ffab3b7060e39d2b6dfb9b568127ed536d3e9a5108effdd36a9a381c02

  • SHA512

    ff5a0ffa6a2036115f5bbc2ffabc7ea74e9ae9499f4bdbb459567808e56fd74ae7791fa118b49b46f16e4504e3f5a5cdedc34ccd9a2cbb0f62cd04e56fb7a856

  • SSDEEP

    196608:vlNJpfYZe9OV3InDWJbBGIxqx3QfwasMC9WOxTgpCGU:9RAZe9O6aJb4xhDxkJptU

Malware Config

Targets

    • Target

      Carpe-Rel.exe

    • Size

      8.0MB

    • MD5

      8bcbf9db53efe946442a74f54f3833f0

    • SHA1

      742ecb66c490d1440cbda835bf623a6b652ef2b8

    • SHA256

      94ffbbd048a4dd915dbbcd4bb2016e72990dc934366ec49c3b1ce4843f982b67

    • SHA512

      71ff0c6b39334001e885a2961326e12ece38f7360e8ce0e31c2894ab06a0c56d120d6b380e77f1e1f11bdaa10ce02b8249681e0d2ef8b3cc843d3b0b71e4c095

    • SSDEEP

      196608:clyuPurErvI9pWjgaAnajMsbSEo2KfQC//OoNmU+:iyuPurEUWjJjIflo4jNv+

    Score
    8/10
    • Command and Scripting Interpreter: PowerShell

      Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks