General

  • Target

    M-Centres 3.3 x64.zip

  • Size

    355KB

  • Sample

    241010-ha3ktsvhmm

  • MD5

    ebc0e925fe65c2e16acb069c9eaf58fb

  • SHA1

    668a66dfc0ea0d74d4e78d54451490704252e709

  • SHA256

    8662966bf05826209a1c0cfe155a24c5c1bdc45e61623d342270d5129fde8b3d

  • SHA512

    0f64e08f09cea832c7581f9e47f98142cdb8ee5da73e945c514ba451c712328ec2da022204c043633abc7eb0c6cf84cbc60552fd5b58fc8b0db7955ba5c77b50

  • SSDEEP

    6144:QH1q49lDowt9+qwJ1clvQQPsbUV8MYuRjLX/WMjcEoKpPWLqtkAM44ihwzJNmox:QVLDjJl4QkwV8MJPeD2Wqtsfb

Score
8/10

Malware Config

Targets

    • Target

      M-Centres 3.3.exe

    • Size

      98KB

    • MD5

      7cacab8ab02ddd033e94048f78778ec1

    • SHA1

      84f856007c3196525c01fcfc462e439007a15221

    • SHA256

      ed231188b591801d2df5730e5648a089da61eeac412006dccb486470144f14cb

    • SHA512

      98413b31fbba3e41960dbddd04d15410e5894d38ee3bc887dcc3be144e3502ea6c7e18b33bf7d5375325e5b1910c8f5e6f891c181e3190ff32a9541e1a8a7a1f

    • SSDEEP

      1536:fiJKcN3PT/+zGNaDG9LSCF9FOuzhO0c/aHlnQUNlYSX0END:fiJ7azG/9TH6UNlYSkeD

    Score
    8/10
    • Downloads MZ/PE file

    • Possible privilege escalation attempt

    • Modifies file permissions

    • Legitimate hosting services abused for malware hosting/C2

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks