General

  • Target

    Carnosin.exe

  • Size

    904KB

  • Sample

    241024-q9qdjsydqa

  • MD5

    0e4f7ac6287f9552f7ea5ae47e5f77ed

  • SHA1

    6b890d683c139e3c5d33434810fd76744f5768ee

  • SHA256

    b16b79b8bcb55f71e7968e33ca0c72361550c2229570e08c4f20ec9f8dfdfc7c

  • SHA512

    93aeb1081766707c0e69fe854237dc552668134bd4567fa322d3f17f02ba47fbbe6f3c34614354ed18903fc07982a8658ad8fe450cc6bdb2e904f512a8569dc0

  • SSDEEP

    12288:mSlUb0flfFujJ7tveiTO8waxFeh2FCCMntz6I8128TsXULDh+gDBf6j4Ydcv+9:XlUbLjHeiTOZ2UVf+DLD1BbYG2

Malware Config

Targets

    • Target

      Carnosin.exe

    • Size

      904KB

    • MD5

      0e4f7ac6287f9552f7ea5ae47e5f77ed

    • SHA1

      6b890d683c139e3c5d33434810fd76744f5768ee

    • SHA256

      b16b79b8bcb55f71e7968e33ca0c72361550c2229570e08c4f20ec9f8dfdfc7c

    • SHA512

      93aeb1081766707c0e69fe854237dc552668134bd4567fa322d3f17f02ba47fbbe6f3c34614354ed18903fc07982a8658ad8fe450cc6bdb2e904f512a8569dc0

    • SSDEEP

      12288:mSlUb0flfFujJ7tveiTO8waxFeh2FCCMntz6I8128TsXULDh+gDBf6j4Ydcv+9:XlUbLjHeiTOZ2UVf+DLD1BbYG2

    • Guloader,Cloudeye

      A shellcode based downloader first seen in 2020.

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks