General

  • Target

    null_beamng_drive_17943548284.zip

  • Size

    6.0MB

  • Sample

    240627-e6vy3svfqp

  • MD5

    04958e4e6a4e84d77a697fd5998c1e8f

  • SHA1

    1e975d83b9244d08e99c30f73a34ca12700a95ac

  • SHA256

    8eeb0e710b7f34a75aa5376ca001a940a7df847b34ba4a14f15ea6bff2aa3ace

  • SHA512

    40dcae97c1642aca0ce7dc487dfe18994e98072a6760f59390d9c0fd4b9d4e3292faf92b683905395379546d8a092e9b2cdaae449cfc61123e365ffcc109f3ac

  • SSDEEP

    98304:6mXcp4/UIK0eLI49mG6DVcza6a+K7Gt6bZYKVubOfnSFtVlkb4Sqbv4aOuj4DoCH:6mXCdbkGf7K7zdFuafSl/S6gaOumCQ

Malware Config

Targets

    • Target

      3d4c6a5de44c00e749925ec7c94d23826f3bcfc5ca98c906447ccd95dad299dc

    • Size

      6.4MB

    • MD5

      41a54a40c7a2f87856697b5935b222b8

    • SHA1

      c734ee45ad8a2298b6a183b8c1e2fcf7d3eeb964

    • SHA256

      3d4c6a5de44c00e749925ec7c94d23826f3bcfc5ca98c906447ccd95dad299dc

    • SHA512

      628548529b8052179b51818c2578ca4393819c8c3225ea12db169fa03fa79f85a918969d2b22185561906c5324380e7862171d46ead54dec7f3ad3f3c658627d

    • SSDEEP

      98304:EhzPbue+8UEIx6yamaHl3Ne4i3WUZnhhM7M+yvFaW9ccpXquJHwjKhusSe:EhzDT+qLeNWInY7/sBEuJSOt

    Score
    8/10
    • Command and Scripting Interpreter: PowerShell

      Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Legitimate hosting services abused for malware hosting/C2

    • Target

      Dropper.pyc

    • Size

      6KB

    • MD5

      4529447d59fc67bb6ddeed05092c2643

    • SHA1

      5afdbe4436acc539379d4da296eb9656044554de

    • SHA256

      7230fc2f204f0a74149b4813b5e5a52b570c64129260b913ec4ed681670e7f01

    • SHA512

      e5c9e527505d7dce5d6203321ef5f8a2d859f16e7401fe8e0f63ac207520d1905c8001e0529b05a2d69a1a0f1f531376da0da075bdb3d6cc8e84d1389a44efe8

    • SSDEEP

      192:cga7G0y9oQlPvddC9s0iP+u9rYRuDibmwyoK/xSXVcWWlSm:c20y9o8PvdgmNP+u9rgVyoagpSSm

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks