General

  • Target

    1db322a669e3b551b3918a0d171f2fa3ed88e80fa3a9361b54a5085184f04444N.exe

  • Size

    1.7MB

  • Sample

    241114-d8vwesthpp

  • MD5

    099c3b2933416a7d2a2a0bab86865b40

  • SHA1

    0db2caa893cfdf9eac1329e50dea0629ad568637

  • SHA256

    1db322a669e3b551b3918a0d171f2fa3ed88e80fa3a9361b54a5085184f04444

  • SHA512

    3e057f815c4df5951f014e9bd3dff45dfd091592fac6a4ac429df1a1dc7099cd62262c978eaf4f7cc94f322f9416229bcd65f64a78cca81c07dbdefaa97ec62c

  • SSDEEP

    384:PJG14lR/NpKAN+UJfo8vJh/7neuwyv3ZUKcreuDreuwyv3ZUKcreuDz:RFtFe8vJtDeunUreufeunUreuf

Malware Config

Targets

    • Target

      1db322a669e3b551b3918a0d171f2fa3ed88e80fa3a9361b54a5085184f04444N.exe

    • Size

      1.7MB

    • MD5

      099c3b2933416a7d2a2a0bab86865b40

    • SHA1

      0db2caa893cfdf9eac1329e50dea0629ad568637

    • SHA256

      1db322a669e3b551b3918a0d171f2fa3ed88e80fa3a9361b54a5085184f04444

    • SHA512

      3e057f815c4df5951f014e9bd3dff45dfd091592fac6a4ac429df1a1dc7099cd62262c978eaf4f7cc94f322f9416229bcd65f64a78cca81c07dbdefaa97ec62c

    • SSDEEP

      384:PJG14lR/NpKAN+UJfo8vJh/7neuwyv3ZUKcreuDreuwyv3ZUKcreuDz:RFtFe8vJtDeunUreufeunUreuf

    • Modifies visibility of file extensions in Explorer

    • Modifies visiblity of hidden/system files in Explorer

    • Disables RegEdit via registry modification

    • Disables Task Manager via registry modification

    • Adds Run key to start application

    • Modifies WinLogon

    • Drops file in System32 directory

    • Hide Artifacts: Hidden Files and Directories

MITRE ATT&CK Enterprise v15

Tasks