General

  • Target

    4c750c11a04f90c9922ace4a237dc256d7e71fa512d4857922cc7d46bb4ba0e9.exe

  • Size

    48.2MB

  • Sample

    241114-cc9t2ashnr

  • MD5

    2d2f050e6c898065032cb2686a0effca

  • SHA1

    0d3c1fbd9b7db74fdb5ee155b610d86319d9fa51

  • SHA256

    4c750c11a04f90c9922ace4a237dc256d7e71fa512d4857922cc7d46bb4ba0e9

  • SHA512

    5fcd58c259cd020f5b4afe8802a6588e7a942ef53cf5175f6f18c900e8ed7e6b5009370b0b0e06969e4ecc7c26dcd7e8f3318907411fc7df62ccb797ec04f67e

  • SSDEEP

    786432:HyiiDc4ImIc9SLIJyNwsNBIRya++/sC89UTh/1m1OO2+3FJRYd17TV+s:SiiD9KL85sNBIRyX0M9gG1OO//2rh+s

Malware Config

Targets

    • Target

      4c750c11a04f90c9922ace4a237dc256d7e71fa512d4857922cc7d46bb4ba0e9.exe

    • Size

      48.2MB

    • MD5

      2d2f050e6c898065032cb2686a0effca

    • SHA1

      0d3c1fbd9b7db74fdb5ee155b610d86319d9fa51

    • SHA256

      4c750c11a04f90c9922ace4a237dc256d7e71fa512d4857922cc7d46bb4ba0e9

    • SHA512

      5fcd58c259cd020f5b4afe8802a6588e7a942ef53cf5175f6f18c900e8ed7e6b5009370b0b0e06969e4ecc7c26dcd7e8f3318907411fc7df62ccb797ec04f67e

    • SSDEEP

      786432:HyiiDc4ImIc9SLIJyNwsNBIRya++/sC89UTh/1m1OO2+3FJRYd17TV+s:SiiD9KL85sNBIRyX0M9gG1OO//2rh+s

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks