General
-
Target
8889049b8a18406ab58ddfc1e31166f0N
-
Size
185KB
-
Sample
240911-wvprcswajg
-
MD5
8889049b8a18406ab58ddfc1e31166f0
-
SHA1
f483df971aa0a44d2bd8d594f60279f38f839832
-
SHA256
225d08cf96bd633fa48fe1150a3531733ca87a49a9526c542f85d45400cff21a
-
SHA512
77d5dcc9dc36023cd5092247e57a2d1ccdf375d724b0cbe329d2c4a49b083f1f39af62ea3587fa3db931ea37b720eae5b8746b7669db58b3bcb6a44945759237
-
SSDEEP
3072:XVqoCl/YgjxEufVU0TbTyDDala6WOdYjOm83pOcIlBly:XsLqdufVUNDasOdC7/y
Malware Config
Targets
-
-
Target
8889049b8a18406ab58ddfc1e31166f0N
-
Size
185KB
-
MD5
8889049b8a18406ab58ddfc1e31166f0
-
SHA1
f483df971aa0a44d2bd8d594f60279f38f839832
-
SHA256
225d08cf96bd633fa48fe1150a3531733ca87a49a9526c542f85d45400cff21a
-
SHA512
77d5dcc9dc36023cd5092247e57a2d1ccdf375d724b0cbe329d2c4a49b083f1f39af62ea3587fa3db931ea37b720eae5b8746b7669db58b3bcb6a44945759237
-
SSDEEP
3072:XVqoCl/YgjxEufVU0TbTyDDala6WOdYjOm83pOcIlBly:XsLqdufVUNDasOdC7/y
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1