a771a2b422b964399df75624d897bc2ff3b5bf99a9f661aed3c8232565ded1a2

General

Target

Malwarebytes Anti-Exploit.zip
Size

3.7MB
Sample

240902-18ssdszdpb
MD5

d6734b2620e54e0f7f56d0bdc00c8654
SHA1

574f7bdf1d779c1fc0f27b70e1fb90d4e4676a4e
SHA256

a771a2b422b964399df75624d897bc2ff3b5bf99a9f661aed3c8232565ded1a2
SHA512

fa0cae4b37b6038555ed296fd2f8b8a5e33c0d5a01f154f76226c1a243eb7b2ac38eeb700c4bd05e4d220906d6b5288c1941ce67bdc00d459f4f8c9a7098d4a5
SSDEEP

98304:MoeWMGcO5nJEG0C5DY3hqDftrwXpii/IPS3E+Orn5NsZeTD4vJ:QsX5nJjND3Fs5iiwK3E+OK9h

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  Malwarebytes Anti-Exploit/mbae-cli.exe
- Size
  
  274KB
- MD5
  
  3a2a259b1966a2416a5db40114558cb6
- SHA1
  
  30206694cc4a8bf59eeeda68b1236025acd12f72
- SHA256
  
  ea071f699797975ccbce51eb3aab5d8a499b7a59edcd025ad6c11f59a6071bdf
- SHA512
  
  de2b15afb63b897ae20a2085b31acdb667d2bd25f01baeb3583c536fadd247f4258ae4d830dde9eefc0dd76ceb35e120e3066cdb994c05f3de84dd05ed7d94a6
- SSDEEP
  
  3072:pmp74LOSpfImtGT1NicjNwA7zhN9FaOfROkuJlUrMYJ/dQ0oSKE:pmpAfpwgGT1cgwhq98Sp
Score

3^/10

discovery
behavioral1
- Target
  
  Malwarebytes Anti-Exploit/mbae-svc.exe
- Size
  
  165KB
- MD5
  
  1773a8b85df143f546ee49b7a6b82151
- SHA1
  
  655121c27c3f57b090a2400e05d043aae2cc1618
- SHA256
  
  80e1b3efa41abe61caf9194c6fab5265f128b60306b2200d187a885bbbb9feaa
- SHA512
  
  c57b01fdbcf41536384cf4db8fcf1c84c1f172836803d3c5634b267a2969ef3b653e697e4327f3f01107ce00d200984e0691246c03dd33240d6faa211eb86e3e
- SSDEEP
  
  3072:QAQmiHmaL53BA8geTLD9kMM36S3nSPnFkSWo:QAQmTaVBmG03nfSv
Score

3^/10

discovery
behavioral2
- Target
  
  Malwarebytes Anti-Exploit/mbae-uninstaller.exe
- Size
  
  121KB
- MD5
  
  a91f5e518c27199ce0066912a8b43a53
- SHA1
  
  d8ca54dae06c404d80656bd064dd895bff4cf097
- SHA256
  
  836f3c1a5aba805b340ddd63ea84420357d741d439f48795702f63a0818c8d2d
- SHA512
  
  43dd44b11d7dcd131acdbc13d1e1c9126be46ce72c9f85ca5fa3d2582b7fde84470edb539b7d8ec3558eb79051298da55e4ad7300fb3ee4533b10cc9a6d4c239
- SSDEEP
  
  1536:bm/59Nds83zSosy1zy4ilZRkme5UcD/2fbsWjcdNY58sjZHQUqfIPKyDzQi4Ovij:K/vnSgDSW5Z2kNY2sjtJPnzQS8PnZR
Score

3^/10

discovery
behavioral3
- Target
  
  Malwarebytes Anti-Exploit/mbae.exe
- Size
  
  2.4MB
- MD5
  
  80547d42375d180a38b1e56366948bf7
- SHA1
  
  42cef18b3f93393f7486c3674b98dd87729eee0e
- SHA256
  
  bfe3910d9c19d9bf8a262c61c040fced562aa34365dbbc431355a6163e0f75f3
- SHA512
  
  b708a87d8ef5f9d497c0dc64820a4f2f65296e790f106f157961db93145fcf247bcd0dc5c6b9941d5d41cc7022443acad3b254daee37a35ecc84611e97523b77
- SSDEEP
  
  12288:hoWFl5uSTQavvvvevvv8vvvvKvvvKvvvvtvvvmvvvvvhvvvvPvvvvv2vvvvPvvvV:+dS78paBKoFFeYz
Score

3^/10

discovery
behavioral4
- Target
  
  Malwarebytes Anti-Exploit/mbae64.exe
- Size
  
  344KB
- MD5
  
  252eac0e361e266219ca9c80b808fd29
- SHA1
  
  5347051ea53d63dd477d3c67a689e20f9c674ec2
- SHA256
  
  2119cf4280dac7328f196cd5352bb9974395b185e40a3e582a6f6ce74b6c09c3
- SHA512
  
  66bb2d6b15b14a195b0db1ee10c7885280747ce2aa4bb7c8f414818a68e55a07c0bf3ab0deb36341cc0f09d4104bb152d91919aecd635d815cc0b1a2efbdf129
- SSDEEP
  
  6144:s1arxX3oIYPg5M/FiT7feNDqXeRYw8pFEO3TSN:bo3oEWXeNqP3u
Score

1^/10
behavioral5
- Target
  
  Malwarebytes Anti-Exploit/unins000.exe
- Size
  
  701KB
- MD5
  
  b7fe199c61755c2805a0b5aa6ad962b7
- SHA1
  
  3a910da724198ca9df76200e61b5c9548b710dd2
- SHA256
  
  c01894a246137a9af4b3b016139317bb964e635fd2009e9d8fa358425ab7e47d
- SHA512
  
  b8b7f1108c0a6993284c3050975c3e23d531cf3e75f0a02bf57e41f6b760e6752e20bc5f3e8e295a3cf981e0dacb05276f035b8a02a5510503ff23df74e93d19
- SSDEEP
  
  12288:6TPcYn5c/rPx37/zHBA6a5UeYpthr1CERAgrNuR+1Iq5MRxyF7:SPcYn5c/rPx37/zHBA6pFptZ1CEQqMRe
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1

T1082

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Deletes itself

Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6