General

  • Target

    MrMajor.zip

  • Size

    381KB

  • Sample

    240908-vqak7sxepr

  • MD5

    5533cbb94f34c3260435ffea84d8696a

  • SHA1

    09a81b171ee4852c8b27a17c68a48f8dbfd1f82d

  • SHA256

    9c6bd97512f098959cbfa376549f5477d266b507af3a1e47f7cbbeb781f50df9

  • SHA512

    b89422d65dc69b98ebdfaa3ae8594a2fac46b605af8b70ecaabbd26cc72caf26423da9370abebe7b67725dd2b4bec9a96f9b5f394743674f4c78bd295a2d7dda

  • SSDEEP

    6144:8h3idhONY259BH1DzJ5PzVNtGgc+F9TBd096cTKAsLEbqqbd+VWM8AHiKn9SlXNO:8h3iXPw9Tc6kVXMHHLEf8ld

Score
10/10

Malware Config

Targets

    • Target

      MrDeath/MrsMajor 3.0.exe

    • Size

      381KB

    • MD5

      35a27d088cd5be278629fae37d464182

    • SHA1

      d5a291fadead1f2a0cf35082012fe6f4bf22a3ab

    • SHA256

      4a75f2db1dbd3c1218bb9994b7e1c690c4edd4e0c1a675de8d2a127611173e69

    • SHA512

      eb0be3026321864bd5bcf53b88dc951711d8c0b4bcbd46800b90ca5116a56dba22452530e29f3ccbbcc43d943bdefc8ed8ca2d31ba2e7e5f0e594f74adba4ab5

    • SSDEEP

      6144:Th3idhONY259BH1DzJ5PzVNtGgc+F9TBd096cTKAsLEbqqbd+VWM8AHiKn9SlXNA:Th3iXPw9Tc6kVXMHHLEf8l7

    Score
    10/10
    • UAC bypass

    • Executes dropped EXE

    • Loads dropped DLL

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

MITRE ATT&CK Enterprise v15

Tasks