General
-
Target
ServerSetup-3.13.0.2501.exe
-
Size
33.4MB
-
Sample
240915-cydnqa1dpf
-
MD5
6bb210e7a719bbec36ca93514c52a286
-
SHA1
d3488af90c0c6e073f910d840df7fb91b4d59190
-
SHA256
e084d1a666d9bbfdc7bdc2be24e09b9b93edcf6ab14586a3aab74e74bd87a37d
-
SHA512
efa0a78a51d2daca84d136517d1ca3dbacb2408075ad5b035bfebd0c5022ef49fd60983eb18f27cab03db127d011c1b9decbfe6a7318aa0b9e23195fda849f63
-
SSDEEP
786432:UfCESjXWy8n+6yP0b1f8qAVeIyeZP6TqxZ0aXjI0x0RrM4D0:+CpG1n+6QIR8qAAao+xTjipD0
Malware Config
Targets
-
-
Target
ServerSetup-3.13.0.2501.exe
-
Size
33.4MB
-
MD5
6bb210e7a719bbec36ca93514c52a286
-
SHA1
d3488af90c0c6e073f910d840df7fb91b4d59190
-
SHA256
e084d1a666d9bbfdc7bdc2be24e09b9b93edcf6ab14586a3aab74e74bd87a37d
-
SHA512
efa0a78a51d2daca84d136517d1ca3dbacb2408075ad5b035bfebd0c5022ef49fd60983eb18f27cab03db127d011c1b9decbfe6a7318aa0b9e23195fda849f63
-
SSDEEP
786432:UfCESjXWy8n+6yP0b1f8qAVeIyeZP6TqxZ0aXjI0x0RrM4D0:+CpG1n+6QIR8qAAao+xTjipD0
Score8/10-
Drops file in Drivers directory
-
Adds Run key to start application
-
Modifies Windows Firewall
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Defense Evasion
Impair Defenses
1Disable or Modify System Firewall
1Modify Registry
1