General

  • Target

    51342f6e5d65b859f6a8f48f7446787d8e68d75167c1a550c84f526f0fe7bc99N

  • Size

    18KB

  • Sample

    241109-m3xmhaslcx

  • MD5

    43fb54bf0df55d09b329feca7a9a7160

  • SHA1

    66048a3b82a3a15dd578e8b7eefbbd3a3f08c268

  • SHA256

    51342f6e5d65b859f6a8f48f7446787d8e68d75167c1a550c84f526f0fe7bc99

  • SHA512

    4e51f3112d657221abe75d9f0372e3fde67a989d091c367515b34ebc9b0baa219f8b832060bf0631c1bbfa9515f54fb8ac44c95aa0f905fd14ede1ed4b4b4b95

  • SSDEEP

    384:g58AcUoUQKNRYELxQUHDvmk3E+KDvB77777J77c77c77c72qh5N52JLcmg:g5BOFKksO1mE9B77777J77c77c77c71x

Malware Config

Targets

    • Target

      51342f6e5d65b859f6a8f48f7446787d8e68d75167c1a550c84f526f0fe7bc99N

    • Size

      18KB

    • MD5

      43fb54bf0df55d09b329feca7a9a7160

    • SHA1

      66048a3b82a3a15dd578e8b7eefbbd3a3f08c268

    • SHA256

      51342f6e5d65b859f6a8f48f7446787d8e68d75167c1a550c84f526f0fe7bc99

    • SHA512

      4e51f3112d657221abe75d9f0372e3fde67a989d091c367515b34ebc9b0baa219f8b832060bf0631c1bbfa9515f54fb8ac44c95aa0f905fd14ede1ed4b4b4b95

    • SSDEEP

      384:g58AcUoUQKNRYELxQUHDvmk3E+KDvB77777J77c77c77c72qh5N52JLcmg:g5BOFKksO1mE9B77777J77c77c77c71x

    • Modifies WinLogon for persistence

    • Executes dropped EXE

    • Adds Run key to start application

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks