General
-
Target
MacroRecorderSetup.exe
-
Size
43.8MB
-
Sample
241014-y96pjavekb
-
MD5
13fffd4457ced32c07f1e846eaa1e635
-
SHA1
91260b54dfd59f9a99142f2aae79724178a798cb
-
SHA256
66270f88ef9e9b3804903f3ac0e152f593ff72812f33e89b68848b19281c0c27
-
SHA512
7c4f56ebdea19d6b905682b6ac9085cd244106f01d5ac0d45bb13b1df09b923de4396a79ff5628d9a7abf67fe436f211838bb0a6d8f37f0f87d4532d29eddf9d
-
SSDEEP
786432:C25w45VXPJQwSuoy5xCDza9f7iPoOzIfhGbuGHkEol2ooMipXv8/GxiEmTnxo:CkwnwFd4zLPzIfhG1Ioovcf+zECW
Malware Config
Targets
-
-
Target
MacroRecorderSetup.exe
-
Size
43.8MB
-
MD5
13fffd4457ced32c07f1e846eaa1e635
-
SHA1
91260b54dfd59f9a99142f2aae79724178a798cb
-
SHA256
66270f88ef9e9b3804903f3ac0e152f593ff72812f33e89b68848b19281c0c27
-
SHA512
7c4f56ebdea19d6b905682b6ac9085cd244106f01d5ac0d45bb13b1df09b923de4396a79ff5628d9a7abf67fe436f211838bb0a6d8f37f0f87d4532d29eddf9d
-
SSDEEP
786432:C25w45VXPJQwSuoy5xCDza9f7iPoOzIfhGbuGHkEol2ooMipXv8/GxiEmTnxo:CkwnwFd4zLPzIfhG1Ioovcf+zECW
Score8/10-
Modifies Windows Firewall
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks for any installed AV software in registry
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1