General
-
Target
02d367a8a408d790f53924793ffa0410.exe
-
Size
741KB
-
Sample
240705-r2j28ssfmh
-
MD5
02d367a8a408d790f53924793ffa0410
-
SHA1
5603d6b57fb2486dbe6386baa0ff2fd00be5eed7
-
SHA256
1301f0aa01477e79594343fc066d39ad1cc622e51efa1b5effdfc4aee182da84
-
SHA512
3abcbe6fdceb7e91b6c0a980b828a964e8221a7a7a3d4bc7628261c503d2ed3c27c448671fdf4268318d70d35d2e7697fe156f812f87410a7b7dcc250128953c
-
SSDEEP
12288:ltTuhrf45I8jWtJ8OgL27rd69bk5NCgGhSFB79gYhLIf6EQ9EYcw1FV:lIt4kt0Kd6F6CNzYhUiEWEYcwt
Malware Config
Targets
-
-
Target
02d367a8a408d790f53924793ffa0410.exe
-
Size
741KB
-
MD5
02d367a8a408d790f53924793ffa0410
-
SHA1
5603d6b57fb2486dbe6386baa0ff2fd00be5eed7
-
SHA256
1301f0aa01477e79594343fc066d39ad1cc622e51efa1b5effdfc4aee182da84
-
SHA512
3abcbe6fdceb7e91b6c0a980b828a964e8221a7a7a3d4bc7628261c503d2ed3c27c448671fdf4268318d70d35d2e7697fe156f812f87410a7b7dcc250128953c
-
SSDEEP
12288:ltTuhrf45I8jWtJ8OgL27rd69bk5NCgGhSFB79gYhLIf6EQ9EYcw1FV:lIt4kt0Kd6F6CNzYhUiEWEYcwt
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1