General

  • Target

    acbefea95d27851415791bb9c27d2afb7d0e7b7fa3733d101a3a96a7603d8817.exe

  • Size

    665KB

  • Sample

    241112-q247qsxjhj

  • MD5

    b7d3401b3f38c5a856d1951a1126994a

  • SHA1

    763b91eb890aab9ee6d10d910955299d31ff20c1

  • SHA256

    acbefea95d27851415791bb9c27d2afb7d0e7b7fa3733d101a3a96a7603d8817

  • SHA512

    77c2417909416b4c8acac65af84cba563470c06b73544b5947265cef843b00c0224f754a53eaeda8e794f48b4cf51922460300673fb9ad89689714226718e98f

  • SSDEEP

    12288:fhkDgouVA2nxKkozvdRgQriDwOIQmxiZnYQE7PJcD4anJV2:lRmJk8oQricOIvxiZY15anT2

Malware Config

Targets

    • Target

      acbefea95d27851415791bb9c27d2afb7d0e7b7fa3733d101a3a96a7603d8817.exe

    • Size

      665KB

    • MD5

      b7d3401b3f38c5a856d1951a1126994a

    • SHA1

      763b91eb890aab9ee6d10d910955299d31ff20c1

    • SHA256

      acbefea95d27851415791bb9c27d2afb7d0e7b7fa3733d101a3a96a7603d8817

    • SHA512

      77c2417909416b4c8acac65af84cba563470c06b73544b5947265cef843b00c0224f754a53eaeda8e794f48b4cf51922460300673fb9ad89689714226718e98f

    • SSDEEP

      12288:fhkDgouVA2nxKkozvdRgQriDwOIQmxiZnYQE7PJcD4anJV2:lRmJk8oQricOIvxiZY15anT2

    • UAC bypass

    • Drops file in Drivers directory

    • Adds Run key to start application

    • Checks whether UAC is enabled

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks