General
-
Target
lqtxupdater.exe
-
Size
757KB
-
Sample
240920-zm5z6axepq
-
MD5
3c91c9b98e30cd339329114c26a7ed5f
-
SHA1
e952a3d915deddec7bfddba1c3500065663cc229
-
SHA256
def77dec17108dc1cf940823eee4a83762a8e50dce9a2978abfaf5f1a6438ab4
-
SHA512
cabc5be97ba196e89cf766013c036d4e96177fd7962f414eee12e103f5bcbc03be42f1c927384e067784c89ad640c532680c57228f07288ebdceda0cc1f449d1
-
SSDEEP
12288:PFUNDaE/9LlbRRaHIKhbBkSHgcUBEthBw4f+1uPCVe2z7grsunc:PFOa+PR+VhNkI1/thBrf+wIlgrtnc
Malware Config
Targets
-
-
Target
lqtxupdater.exe
-
Size
757KB
-
MD5
3c91c9b98e30cd339329114c26a7ed5f
-
SHA1
e952a3d915deddec7bfddba1c3500065663cc229
-
SHA256
def77dec17108dc1cf940823eee4a83762a8e50dce9a2978abfaf5f1a6438ab4
-
SHA512
cabc5be97ba196e89cf766013c036d4e96177fd7962f414eee12e103f5bcbc03be42f1c927384e067784c89ad640c532680c57228f07288ebdceda0cc1f449d1
-
SSDEEP
12288:PFUNDaE/9LlbRRaHIKhbBkSHgcUBEthBw4f+1uPCVe2z7grsunc:PFOa+PR+VhNkI1/thBrf+wIlgrtnc
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1