General

  • Target

    7c435d4f56504d708bf3739c6e37a814d58815d109e65aaa4be359550842c940N

  • Size

    740KB

  • Sample

    241107-r1kmdathjf

  • MD5

    0612ad8c492099691f504d2cab8561b0

  • SHA1

    0b176c9c7356da33d8b091b54c425441c208dc34

  • SHA256

    7c435d4f56504d708bf3739c6e37a814d58815d109e65aaa4be359550842c940

  • SHA512

    3174cc4db887d6635faf259ed63dc478c0cb1025cc1830ca5dbecfda18c284cebff48d4019696fb097deedba44a35233fa3bd354720df9bc91cb019ccb882b35

  • SSDEEP

    6144:XV55pRPQdrFhbEhtVacLaN//2gWF6l8o2mOwjTI:XDDGdDbEh/a3t2MY

Score
8/10

Malware Config

Targets

    • Target

      7c435d4f56504d708bf3739c6e37a814d58815d109e65aaa4be359550842c940N

    • Size

      740KB

    • MD5

      0612ad8c492099691f504d2cab8561b0

    • SHA1

      0b176c9c7356da33d8b091b54c425441c208dc34

    • SHA256

      7c435d4f56504d708bf3739c6e37a814d58815d109e65aaa4be359550842c940

    • SHA512

      3174cc4db887d6635faf259ed63dc478c0cb1025cc1830ca5dbecfda18c284cebff48d4019696fb097deedba44a35233fa3bd354720df9bc91cb019ccb882b35

    • SSDEEP

      6144:XV55pRPQdrFhbEhtVacLaN//2gWF6l8o2mOwjTI:XDDGdDbEh/a3t2MY

    Score
    8/10
    • Looks for VMWare Tools registry key

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks