General
-
Target
cc9c91024a5af30c981251d75b65cdf4cea6a6ee1f5eb47b4ec3f7696286e77dN
-
Size
741KB
-
Sample
241010-n7ywss1bnp
-
MD5
0a0c97cbdc7f992693c6cc3d52988b40
-
SHA1
b21616fabc12354d88965b12760bbb4523a28a73
-
SHA256
cc9c91024a5af30c981251d75b65cdf4cea6a6ee1f5eb47b4ec3f7696286e77d
-
SHA512
f467e7fa64b1c88a8e0e2a8c85bdda59bf0dab134ea02dbe373d99abe92559e6e23fc1a06a1f8bf4c607eb93ba2d238dde6fe61268299bd35f79b01a54dacad7
-
SSDEEP
12288:ltTuh645I8jWtJ8OgL27rd69bk5NCgGhSFB79gYhLIf6EQ9EYcw1FF:lIg4kt0Kd6F6CNzYhUiEWEYcwN
Malware Config
Targets
-
-
Target
cc9c91024a5af30c981251d75b65cdf4cea6a6ee1f5eb47b4ec3f7696286e77dN
-
Size
741KB
-
MD5
0a0c97cbdc7f992693c6cc3d52988b40
-
SHA1
b21616fabc12354d88965b12760bbb4523a28a73
-
SHA256
cc9c91024a5af30c981251d75b65cdf4cea6a6ee1f5eb47b4ec3f7696286e77d
-
SHA512
f467e7fa64b1c88a8e0e2a8c85bdda59bf0dab134ea02dbe373d99abe92559e6e23fc1a06a1f8bf4c607eb93ba2d238dde6fe61268299bd35f79b01a54dacad7
-
SSDEEP
12288:ltTuh645I8jWtJ8OgL27rd69bk5NCgGhSFB79gYhLIf6EQ9EYcw1FF:lIg4kt0Kd6F6CNzYhUiEWEYcwN
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1