General

  • Target

    eulen.rar

  • Size

    5.8MB

  • Sample

    240624-ypf85stbrl

  • MD5

    64b3795465cfd18676f2e5651d7c4329

  • SHA1

    4b2147325e3a39ec45d4455adf2981e86c0bcb76

  • SHA256

    3c85a95c5c0b4e9e074097fed6c876d3c1213b2162c3c8e9b4db4da0237349d0

  • SHA512

    6c3fda5812eb6f5d67d50469d8b974cb9cd807bc0826f906d5b4acf8aa9f8307058b75df73eceea1a20b24f2227d62d66af3bb06e5cd595f74850a2f0d71ae53

  • SSDEEP

    98304:CvwszY5HViN8OeEwUHv7ccUNxaYBXZptiqC80sZG5y7fTfPqgI4+zjw:CvJ8OeRUPgcaxlXZTiq1Zs8vQT/w

Malware Config

Targets

    • Target

      eulen.exe

    • Size

      6.0MB

    • MD5

      5dc6ac83b1983b3dabdd12b6a6bd6857

    • SHA1

      70b91702458c16cc68f4c6034a1e5f4d981319b2

    • SHA256

      cbd322673bf052c689ddc6e966d1e51cc0a53fc4bd058e43607531cfab577342

    • SHA512

      79e6d751fe3af68d991d9bab37743a61787d941a87924f76142221fe77c9aa1c68fceb6b62fc71103fae05116b6ba3a2a56c4adb6efb71757e5bdaeeee586ea9

    • SSDEEP

      98304:4xEtdFBgyVamaHl3Ne4i3gmtfXJOLhx9fZAzDJ4wzQgsRuGK4RjBM5Jq3rsa9:4QFCeN/FJMIDJf0gsAGK4Rju5Ba9

    Score
    8/10
    • Command and Scripting Interpreter: PowerShell

      Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks