General
-
Target
3e926e144582b99e5c4aa1f6989bd1f96fe6b37e3858174e67e1af851df1280fN
-
Size
2.6MB
-
Sample
241002-bt6y2azgjr
-
MD5
86d990c85f15c81131a6ed64586dcf70
-
SHA1
4a19397eecce203f2f9cf3dea0e3140c851eeaa9
-
SHA256
3e926e144582b99e5c4aa1f6989bd1f96fe6b37e3858174e67e1af851df1280f
-
SHA512
cb8beae25836e06177678aae2debf68f09f71dea567e4ed14887830461f2a2193f137b9c9c2425735ad142e340d149b9ca82034799de79a26b5d4113af0af9a7
-
SSDEEP
49152:TeS12nRc6C5CEAHD26ICQVt1ULUQRP6a6YPkCLJ37xbIjNyX5Hxzl/+:6S+c6ZEmqCMtmoQRP6aZtnsNq9l/+
Malware Config
Targets
-
-
Target
3e926e144582b99e5c4aa1f6989bd1f96fe6b37e3858174e67e1af851df1280fN
-
Size
2.6MB
-
MD5
86d990c85f15c81131a6ed64586dcf70
-
SHA1
4a19397eecce203f2f9cf3dea0e3140c851eeaa9
-
SHA256
3e926e144582b99e5c4aa1f6989bd1f96fe6b37e3858174e67e1af851df1280f
-
SHA512
cb8beae25836e06177678aae2debf68f09f71dea567e4ed14887830461f2a2193f137b9c9c2425735ad142e340d149b9ca82034799de79a26b5d4113af0af9a7
-
SSDEEP
49152:TeS12nRc6C5CEAHD26ICQVt1ULUQRP6a6YPkCLJ37xbIjNyX5Hxzl/+:6S+c6ZEmqCMtmoQRP6aZtnsNq9l/+
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1