General

  • Target

    21e8409249aa5443607eaa924d7ca08d564978d35b4afe77334f33f9bcb9b5ec.exe

  • Size

    82KB

  • Sample

    241117-rgrlkssajk

  • MD5

    3be3b8efedd3bf15ec256da643696f1b

  • SHA1

    056ca4614c22bc254cabc5230ae08aa9962e6942

  • SHA256

    21e8409249aa5443607eaa924d7ca08d564978d35b4afe77334f33f9bcb9b5ec

  • SHA512

    8e84acf3c0e985f3ce43ff5e3ebe9a86429be6212471b5c11a21e78485fd7c15ae86975634245b1ab85a2686ff6b8dbd83e83a1cc6e0cf16e10cd61551f86a96

  • SSDEEP

    768:8embNRqsuhlGOBrhgFwumSCbxTGy/BBGg4NKJJKqUThbJ32+ve7i40vN0TlT+Xkh:Wnqdu3abBGy3G8V0iuo5qkSZZZ3q

Malware Config

Targets

    • Target

      21e8409249aa5443607eaa924d7ca08d564978d35b4afe77334f33f9bcb9b5ec.exe

    • Size

      82KB

    • MD5

      3be3b8efedd3bf15ec256da643696f1b

    • SHA1

      056ca4614c22bc254cabc5230ae08aa9962e6942

    • SHA256

      21e8409249aa5443607eaa924d7ca08d564978d35b4afe77334f33f9bcb9b5ec

    • SHA512

      8e84acf3c0e985f3ce43ff5e3ebe9a86429be6212471b5c11a21e78485fd7c15ae86975634245b1ab85a2686ff6b8dbd83e83a1cc6e0cf16e10cd61551f86a96

    • SSDEEP

      768:8embNRqsuhlGOBrhgFwumSCbxTGy/BBGg4NKJJKqUThbJ32+ve7i40vN0TlT+Xkh:Wnqdu3abBGy3G8V0iuo5qkSZZZ3q

    • Modifies visibility of file extensions in Explorer

    • Modifies visiblity of hidden/system files in Explorer

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks