Resubmissions

30-06-2024 04:15

240630-evpmxsxcnm 10

30-06-2024 04:14

240630-etsm7atene 10

General

  • Target

    prynce external (7).exe

  • Size

    6.7MB

  • Sample

    240630-etsm7atene

  • MD5

    2a4de0340799764ce9f5a7472c0c649a

  • SHA1

    28c4682823d1ac0215452efc537e139f06bd822f

  • SHA256

    5e4cd68dd8a71d9c24e80bb6bc5bb6517893d3630fad1f3d9aad1a6cf5891b5b

  • SHA512

    69ddab95172325185b733f7ba67d0abd36d2d984d480a17988707823a518ce54c3647374baa2ae8600acadcad23e839fce77961da2bbd27c7cb8ab44cf19ae88

  • SSDEEP

    196608:onFbwpeN/FJMIDJf0gsAGK5SEQRLuAK2QlE:2/Fqyf0gsfN6AKy

Malware Config

Targets

    • Target

      prynce external (7).exe

    • Size

      6.7MB

    • MD5

      2a4de0340799764ce9f5a7472c0c649a

    • SHA1

      28c4682823d1ac0215452efc537e139f06bd822f

    • SHA256

      5e4cd68dd8a71d9c24e80bb6bc5bb6517893d3630fad1f3d9aad1a6cf5891b5b

    • SHA512

      69ddab95172325185b733f7ba67d0abd36d2d984d480a17988707823a518ce54c3647374baa2ae8600acadcad23e839fce77961da2bbd27c7cb8ab44cf19ae88

    • SSDEEP

      196608:onFbwpeN/FJMIDJf0gsAGK5SEQRLuAK2QlE:2/Fqyf0gsfN6AKy

    Score
    8/10
    • Command and Scripting Interpreter: PowerShell

      Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks