General

  • Target

    b69127a80b8fa164ba4dfaf8edc2cbe7e4b09045e71627a474ac55a611cc5e1a.exe

  • Size

    119KB

  • Sample

    241111-m73djsydml

  • MD5

    735c669602386c4bc5910d9c34f28ae4

  • SHA1

    d4c491828f4d234228b38eba0a55ad56b2fc8538

  • SHA256

    b69127a80b8fa164ba4dfaf8edc2cbe7e4b09045e71627a474ac55a611cc5e1a

  • SHA512

    7d278bd6a70e8ae4ffa9caf83454a7bef2fa801d0026efc6f155bc6ad419d2fafa168a453f94a7fd8f814d8b530ee5891e4ce30a3d4fb1645a2c90af03e803e2

  • SSDEEP

    3072:QSM+4qCYLw4QhsuU23jUVeVyYwlK637C9mwDrOeqF:QSM9qCYL2rU2YCwU6OZA

Malware Config

Targets

    • Target

      b69127a80b8fa164ba4dfaf8edc2cbe7e4b09045e71627a474ac55a611cc5e1a.exe

    • Size

      119KB

    • MD5

      735c669602386c4bc5910d9c34f28ae4

    • SHA1

      d4c491828f4d234228b38eba0a55ad56b2fc8538

    • SHA256

      b69127a80b8fa164ba4dfaf8edc2cbe7e4b09045e71627a474ac55a611cc5e1a

    • SHA512

      7d278bd6a70e8ae4ffa9caf83454a7bef2fa801d0026efc6f155bc6ad419d2fafa168a453f94a7fd8f814d8b530ee5891e4ce30a3d4fb1645a2c90af03e803e2

    • SSDEEP

      3072:QSM+4qCYLw4QhsuU23jUVeVyYwlK637C9mwDrOeqF:QSM9qCYL2rU2YCwU6OZA

    • Drops file in Drivers directory

    • Sets service image path in registry

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • Adds Run key to start application

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks