General

  • Target

    YEAH.png

  • Size

    1.5MB

  • Sample

    241107-v27ebayqbk

  • MD5

    ce8bd84e011256b4b13eb086e1541ccb

  • SHA1

    5f28423d32c5792504ff653086f0986d24378cc8

  • SHA256

    15c952ff76ab4feea15da576ac14b2c0f15c217ce350ea7155d586dde20b0ee1

  • SHA512

    cb4ee80b316c3a535fd2acacdd4c32ddd8bceec7c13882e1448b7f8278e38baf234f4d941209ea8c76de75de885baec024ecf505be8c47253eb44b501be28704

  • SSDEEP

    24576:tLVcbBSdN+4OKMIq++bTJ/BS7QK1T9dbrQNqLnjTs5WCaty2j3esEC1D6hWYiI7y:tLVOBSdI4OKMywB4T9trQNg0WHd3DECf

Malware Config

Targets

    • Target

      YEAH.png

    • Size

      1.5MB

    • MD5

      ce8bd84e011256b4b13eb086e1541ccb

    • SHA1

      5f28423d32c5792504ff653086f0986d24378cc8

    • SHA256

      15c952ff76ab4feea15da576ac14b2c0f15c217ce350ea7155d586dde20b0ee1

    • SHA512

      cb4ee80b316c3a535fd2acacdd4c32ddd8bceec7c13882e1448b7f8278e38baf234f4d941209ea8c76de75de885baec024ecf505be8c47253eb44b501be28704

    • SSDEEP

      24576:tLVcbBSdN+4OKMIq++bTJ/BS7QK1T9dbrQNqLnjTs5WCaty2j3esEC1D6hWYiI7y:tLVOBSdI4OKMywB4T9trQNg0WHd3DECf

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Detected potential entity reuse from brand STEAM.

MITRE ATT&CK Enterprise v15

Tasks