General

  • Target

    e163f5bbb632d8e043f47d261f2c8d2e6339a0ab3737329d9b0ef7e7abce76eb

  • Size

    6.9MB

  • Sample

    241103-f2vyyswdmb

  • MD5

    7782313610d52eefec33d75a5035806f

  • SHA1

    a577a87906dc22cd92ca8a1c51fc28d1ec7d7637

  • SHA256

    e163f5bbb632d8e043f47d261f2c8d2e6339a0ab3737329d9b0ef7e7abce76eb

  • SHA512

    463da44fd72660166a3c350afba8867419948d0e1f761ac9e76e2b4c9c4f25d1d2ae098766d3c70794fe74a618534992ed2b80f0a71707652bf9efea50eb9586

  • SSDEEP

    98304:rIyVIyQWQtZ/K0tGOFWVRuLftCTzLapI9:tXQWyZ/K0ttYVAATzcI9

Malware Config

Targets

    • Target

      e163f5bbb632d8e043f47d261f2c8d2e6339a0ab3737329d9b0ef7e7abce76eb

    • Size

      6.9MB

    • MD5

      7782313610d52eefec33d75a5035806f

    • SHA1

      a577a87906dc22cd92ca8a1c51fc28d1ec7d7637

    • SHA256

      e163f5bbb632d8e043f47d261f2c8d2e6339a0ab3737329d9b0ef7e7abce76eb

    • SHA512

      463da44fd72660166a3c350afba8867419948d0e1f761ac9e76e2b4c9c4f25d1d2ae098766d3c70794fe74a618534992ed2b80f0a71707652bf9efea50eb9586

    • SSDEEP

      98304:rIyVIyQWQtZ/K0tGOFWVRuLftCTzLapI9:tXQWyZ/K0ttYVAATzcI9

    • Disables service(s)

    • Grants admin privileges

      Uses net.exe to modify the user's privileges.

    • Executes dropped EXE

    • Loads dropped DLL

    • Network Share Discovery

      Attempt to gather information on host network.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks