General

  • Target

    Auto Comppkg.rar

  • Size

    5.0MB

  • Sample

    241110-yqszbstkdx

  • MD5

    79a892476d6923fd7b2334b03b9cf6eb

  • SHA1

    0b5516cdcd46ca2dd4fa6b3971374a0dae677dd1

  • SHA256

    b4f6c414e5f4ea98416cc346eb1b32fffd01ab66f6bee537c2b60640658fa438

  • SHA512

    44aee77992b62eb9585812cc6c63b556bac3b703b98ca9d130e3893a827651df50960242f40e683d11597864bff2a4ab249087d21627fc7cc80e9c570567c359

  • SSDEEP

    98304:cgIs8sVLiU++qCMKvrxqvif5rRfVFIDCcAsIeqi02o8xMSWn:cJs8cLiU+sMKjhfbnIDCctIG0v8Gzn

Malware Config

Targets

    • Target

      Auto Comppkg/CompPkgSup.dll

    • Size

      5.4MB

    • MD5

      c69e764adfed196f70d4fae144890d89

    • SHA1

      d1d7d2ce853f985d1fa87b8413ecfbce94d332d5

    • SHA256

      8acf1af5cfb3d89f94d6667fc1c3fb9733450b2344ad948d6ceca655a9aa8119

    • SHA512

      2159caa68e3053050d16f7594599e26633ba85270ed93fa1eb0f0ba785fa2fda1bfc5c593f7b87b0dfe9588b356720053c859fb35001a56957973dbcf7be7948

    • SSDEEP

      98304:IrUFPtni9bOOI521TK0pN7pOz5UhzWC+O5WUMaSzdxu6Q:+YtiB8521+8N7pOz5PsMaS5Q

    Score
    5/10
    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Target

      Auto Comppkg/install.bat

    • Size

      1KB

    • MD5

      cfa3c3ae9f471bf73dbbddc95ae4a42a

    • SHA1

      1a80632f4f67015128c7eb41c71032f9a43a89ff

    • SHA256

      3f19a924ec85a9e0022decaaa13f8987e4912b5b97aa6a83799b263a7b6daca5

    • SHA512

      703b061b913b105c6193213cc82aa01de7f5a58b0036efbb4bde38d1087c18ea2ae13eefe6b1da42fed8777c785e2c129bf4ab714637b72e691cc955348cbbf5

    • Possible privilege escalation attempt

    • Modifies file permissions

    • File and Directory Permissions Modification: Windows File and Directory Permissions Modification

    • Drops file in System32 directory

    • Target

      Auto Comppkg/uninstall.bat

    • Size

      260B

    • MD5

      628b316201f62430b55b7ad6377f08fd

    • SHA1

      6f9691519bbce91ecc50ae5b19a7f1dab31b8393

    • SHA256

      6f8963027951106536bcc690ac62eca42af49c137f743b6ae2d8527685ab014a

    • SHA512

      658c9d345b3f36bd49d56d49440dba7fc1e5e3136f521c43c27f6e819d2a8c6c94191df1b057ea3f43e8a2f023d17d1508124a29ac01d74e5b9173be3390f590

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks