General
-
Target
Sonic Colors Ultimate_QNs7F-1.exe
-
Size
13.8MB
-
Sample
240914-yslb9stcjh
-
MD5
6e4c8f2488186375ecc5701ae74a2a19
-
SHA1
f4765471feb517088c50a085f75264bd43b17b07
-
SHA256
d45e8203cd5398582a2a13d7f1f4caf7bab60fa6db19db24a2ae99efb0b2fbbc
-
SHA512
4ccd80ba67e037947736f3fbb774efa4a293c53fdba8c23c6f1ec0b3fba2deed1950a638e8f53cc80fa09505f84a4c6fadf899750e1c3640fe53348d96733501
-
SSDEEP
393216:wBBTeN30LpEiSCC9XSpIFwah3RuINhkUWgyL:AtwkLps9Xhrhhuahkdh
Malware Config
Targets
-
-
Target
Sonic Colors Ultimate_QNs7F-1.exe
-
Size
13.8MB
-
MD5
6e4c8f2488186375ecc5701ae74a2a19
-
SHA1
f4765471feb517088c50a085f75264bd43b17b07
-
SHA256
d45e8203cd5398582a2a13d7f1f4caf7bab60fa6db19db24a2ae99efb0b2fbbc
-
SHA512
4ccd80ba67e037947736f3fbb774efa4a293c53fdba8c23c6f1ec0b3fba2deed1950a638e8f53cc80fa09505f84a4c6fadf899750e1c3640fe53348d96733501
-
SSDEEP
393216:wBBTeN30LpEiSCC9XSpIFwah3RuINhkUWgyL:AtwkLps9Xhrhhuahkdh
Score6/10-
Checks for any installed AV software in registry
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Modifies Windows Firewall
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1