General

  • Target

    53e7505919f921578c6c3011fb51e0e67fc3f0e695ac178a6edf1d640a32c00a

  • Size

    188KB

  • Sample

    241112-17cpsasenf

  • MD5

    6fc5e78def88bb3553e45067fdcc1c93

  • SHA1

    25c4e067de611e081b5701e1e1df46b66ee76fc8

  • SHA256

    53e7505919f921578c6c3011fb51e0e67fc3f0e695ac178a6edf1d640a32c00a

  • SHA512

    dc7bd42c0ff4645adeb6129098164dcacbe2c484ec32ac1c930838a76b7ab76749c3f4adbb3c5a1206cf081e746727866afa7fd45bd346ea0e20868a08e91ade

  • SSDEEP

    3072:Iy3pOBC3bEpqavBSPcC2ScrgCjlyKOanF9t6xtZYwlslGQ:Iy3pOBC3wpqavBSPcC2ScrgCCs3o7lsV

Malware Config

Targets

    • Target

      53e7505919f921578c6c3011fb51e0e67fc3f0e695ac178a6edf1d640a32c00a

    • Size

      188KB

    • MD5

      6fc5e78def88bb3553e45067fdcc1c93

    • SHA1

      25c4e067de611e081b5701e1e1df46b66ee76fc8

    • SHA256

      53e7505919f921578c6c3011fb51e0e67fc3f0e695ac178a6edf1d640a32c00a

    • SHA512

      dc7bd42c0ff4645adeb6129098164dcacbe2c484ec32ac1c930838a76b7ab76749c3f4adbb3c5a1206cf081e746727866afa7fd45bd346ea0e20868a08e91ade

    • SSDEEP

      3072:Iy3pOBC3bEpqavBSPcC2ScrgCjlyKOanF9t6xtZYwlslGQ:Iy3pOBC3wpqavBSPcC2ScrgCCs3o7lsV

    • Modifies visibility of file extensions in Explorer

    • Modifies visiblity of hidden/system files in Explorer

    • Adds policy Run key to start application

    • Executes dropped EXE

    • Impair Defenses: Safe Mode Boot

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Adds Run key to start application

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks