General

  • Target

    arctic_fn.exe

  • Size

    325KB

  • Sample

    241107-3m5aeazkfx

  • MD5

    541be339a51254c5d6f640381510b448

  • SHA1

    6d53af7d70defc83a4266bfb9f34d34cb8b3a656

  • SHA256

    f89a39ad43bb89409cb9a092e154cc4ff58f34d6aba158b99e3428f7f378944f

  • SHA512

    f5e8a62a183ab202284e00da0a0ebdea3d0a88eecb227e1178d5b7189718febe47eee2c5024f707ec5ede6709c29ef4af0ba3681468fee4a09836ebc97be0aa8

  • SSDEEP

    6144:feR0UKGCfsMfepIouAzNafAtLv36En3ih:feNjZMfo4fLEn3

Malware Config

Targets

    • Target

      arctic_fn.exe

    • Size

      325KB

    • MD5

      541be339a51254c5d6f640381510b448

    • SHA1

      6d53af7d70defc83a4266bfb9f34d34cb8b3a656

    • SHA256

      f89a39ad43bb89409cb9a092e154cc4ff58f34d6aba158b99e3428f7f378944f

    • SHA512

      f5e8a62a183ab202284e00da0a0ebdea3d0a88eecb227e1178d5b7189718febe47eee2c5024f707ec5ede6709c29ef4af0ba3681468fee4a09836ebc97be0aa8

    • SSDEEP

      6144:feR0UKGCfsMfepIouAzNafAtLv36En3ih:feNjZMfo4fLEn3

    • Stops running service(s)

    • Legitimate hosting services abused for malware hosting/C2

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks