Overview

overview

6

Static

static

3

MCENTERS 5....0.exe

windows7-x64

1

MCENTERS 5....0.exe

windows10-2004-x64

1

MCENTERS 5...64.exe

windows7-x64

4

MCENTERS 5...64.exe

windows10-2004-x64

4

MCENTERS 5...86.exe

windows7-x64

6

MCENTERS 5...86.exe

windows10-2004-x64

4

Sharing

Copy URL
Twitter E-mail

General

  • Target

    MC center by blaze.rar

  • Size

    34.2MB

  • Sample

    240823-r8p7ts1ajc

  • MD5

    4bb841261555b5a444fcd97e8902e2d0

  • SHA1

    f7d05eb1ffe4d8a62d644d7016b5d17153d85ce2

  • SHA256

    c580edcf28394361f03064a34daad6552fcac1803ee55eb40fa60c3cda5f63ff

  • SHA512

    bed10dd5ac2fd1056084d98078f7bd886fcb04552b96d9fc07de105ca0d4f80e48e70ce49844bd4a095756ae7b758672c258b642577713de99dcfa955ce4a783

  • SSDEEP

    786432:rsJUr+mLZMC/0o8zpo3Khjtb5cJfQ2OWuWq4UH7djZDWAr6sCQtSG4U7R2p:rsu+mLay0VzpoahN5cm4UH7dkAJbQG4f

Score
6/10
discoverypersistence

Malware Config

Targets

    • Target

      MCENTERS 5.0/MCenters 5.0.exe

    • Size

      249KB

    • MD5

      4ca328d332c4aa17ca7032dad1b45b00

    • SHA1

      f0e94f2fb686fc4670d61b3f6631541d266a3918

    • SHA256

      485a89a78b8af031106f2b6052e2447b2fb7a6300129dbca4ff554adb9b24c1d

    • SHA512

      fc21c3f80ff5eec11c335d67d519fdf19339bafd79fcd0b00cf30a8c77a3e51223c99fd99389388bd5b9531815db0a2d5f7ad22a7c58fd27d1509289ba82ed4d

    • SSDEEP

      3072:uUhELNdJqNOXJfBkWRWdQ831x6wpl3ny2zXeV2nU0ssiyV+WPrfcVblcZSuQ:uZL7kwXp6jyADnUUiScZOZSu

    Score
    1/10
    behavioral1behavioral2

    • Target

      MCENTERS 5.0/VC_redist.x64.exe

    • Size

      24.2MB

    • MD5

      a8a68bcc74b5022467f12587baf1ef93

    • SHA1

      046f00c519900fcbf2e6e955fc155b11156a733b

    • SHA256

      1ad7988c17663cc742b01bef1a6df2ed1741173009579ad50a94434e54f56073

    • SHA512

      70a05bde549e5a973397cd77fe0c6380807cae768aa98454830f321a0de64bd0da30f31615ae6b4d9f0d244483a571e46024cf51b20fe813a6304a74bd8c0cc2

    • SSDEEP

      393216:Dwlp+dkBSuF2SfUfn6+eDl2ugjMoA+hxV33wsBH+Jh+5l+BvlOchteAHYhx9vy:DMp+Ty2SfUfnxk/kpsjlOchcEu2

    Score
    4/10
    discovery
    behavioral3behavioral4

    • Target

      MCENTERS 5.0/VC_redist.x86.exe

    • Size

      13.2MB

    • MD5

      9882a328c8414274555845fa6b542d1e

    • SHA1

      ab4a97610b127d68c45311deabfbcd8aa7066f4b

    • SHA256

      510fc8c2112e2bc544fb29a72191eabcc68d3a5a7468d35d7694493bc8593a79

    • SHA512

      c08d1aa7e6e6215a0cee2793592b65668066c8c984b26675d2b8c09bc7fee21411cb3c0a905eaee7a48e7a47535fa777de21eeb07c78bca7bf3d7bb17192acf2

    • SSDEEP

      196608:oRjgvJ2flpQcIIS/Rj7BWl+aV8t8z72BxBwBgO42BE6+2DQlMp1sHW5ZDmCCM0Xr:IgRIlptVYmfr7yBG/4pXMHsHW76CsGE

    Score
    6/10
    discoverypersistence

    • Adds Run key to start application

      persistence

    • Blocklisted process makes network request

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks