General

  • Target

    map.exe

  • Size

    8.2MB

  • Sample

    240629-dlr61szbqb

  • MD5

    22c131fe3790abbc8d38cdc29f79ee01

  • SHA1

    d5c75544dba473af94bbe4bcd76bd2aeae47fb40

  • SHA256

    676549d19874263b561eecbd5ec44bf9ed0587152b988eec8ee3b1511a1cde0b

  • SHA512

    8d8fc2d701411ac59f5867c1013f94d1ad0519373f802bd5b01021faeb37c6c7d7aa8bf25d7e6486d17b86ffce636e0284a696869de03302847f859d462fb4cd

  • SSDEEP

    196608:oj8P5/Ljv+bhqNVoB0SEsucQZ41JBEPIM11t2:m8P5TL+9qz80SJHQK1JK/1v2

Malware Config

Targets

    • Target

      map.exe

    • Size

      8.2MB

    • MD5

      22c131fe3790abbc8d38cdc29f79ee01

    • SHA1

      d5c75544dba473af94bbe4bcd76bd2aeae47fb40

    • SHA256

      676549d19874263b561eecbd5ec44bf9ed0587152b988eec8ee3b1511a1cde0b

    • SHA512

      8d8fc2d701411ac59f5867c1013f94d1ad0519373f802bd5b01021faeb37c6c7d7aa8bf25d7e6486d17b86ffce636e0284a696869de03302847f859d462fb4cd

    • SSDEEP

      196608:oj8P5/Ljv+bhqNVoB0SEsucQZ41JBEPIM11t2:m8P5TL+9qz80SJHQK1JK/1v2

    • Command and Scripting Interpreter: PowerShell

      Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Hide Artifacts: Hidden Files and Directories

MITRE ATT&CK Enterprise v15

Tasks