General
-
Target
46154c0c670ecd7b9a9966fef17352e80366371a5c7240617b0c416ef18b4c49N
-
Size
1.7MB
-
Sample
241010-p8648ssbnm
-
MD5
13b9675d1e67b8cc1c401038647535d0
-
SHA1
b0d760d490932040490748ed641b245c90a0245a
-
SHA256
46154c0c670ecd7b9a9966fef17352e80366371a5c7240617b0c416ef18b4c49
-
SHA512
d2752cfe32df336a4602120b5b5b52d006137547a0aad4718ff85ff0c955946b8f88711bf61ee4d1841968927bfaa36e8428523c83f36297b334c518f0753167
-
SSDEEP
49152:tnsExITYbNbNWo4kSH3OqtwI6V6dRPaRWLT:RsExIT4bNJFY3Oqt1d1eWLT
Malware Config
Targets
-
-
Target
46154c0c670ecd7b9a9966fef17352e80366371a5c7240617b0c416ef18b4c49N
-
Size
1.7MB
-
MD5
13b9675d1e67b8cc1c401038647535d0
-
SHA1
b0d760d490932040490748ed641b245c90a0245a
-
SHA256
46154c0c670ecd7b9a9966fef17352e80366371a5c7240617b0c416ef18b4c49
-
SHA512
d2752cfe32df336a4602120b5b5b52d006137547a0aad4718ff85ff0c955946b8f88711bf61ee4d1841968927bfaa36e8428523c83f36297b334c518f0753167
-
SSDEEP
49152:tnsExITYbNbNWo4kSH3OqtwI6V6dRPaRWLT:RsExIT4bNJFY3Oqt1d1eWLT
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2