General
-
Target
c15c6277ae0d1e23da3153707d25e74c5952e75670061a931ffb188f0c43969c
-
Size
76KB
-
Sample
241121-jckcpstrfr
-
MD5
42f4bc0318ddecc671e3111d1f14ec69
-
SHA1
a85a276139a6e0b511e4061cdcaa167065cc484c
-
SHA256
c15c6277ae0d1e23da3153707d25e74c5952e75670061a931ffb188f0c43969c
-
SHA512
15a1aaf1fe5d6f381497b8c776b6aa98a2109005bcebca5bace011e125712039c9dad191e395c3a05e96adf212ffb9bdbd6b5622a96a3d89529c221e59fb61d3
-
SSDEEP
768:6e8bNRqsuhlGOBnhgFwumSCbxTGy/BBGg4NKJJKqUThbJ32+ve7i40vN0TlT+XkE:unqJu3abBGy3G8V0iuo8
Malware Config
Targets
-
-
Target
c15c6277ae0d1e23da3153707d25e74c5952e75670061a931ffb188f0c43969c
-
Size
76KB
-
MD5
42f4bc0318ddecc671e3111d1f14ec69
-
SHA1
a85a276139a6e0b511e4061cdcaa167065cc484c
-
SHA256
c15c6277ae0d1e23da3153707d25e74c5952e75670061a931ffb188f0c43969c
-
SHA512
15a1aaf1fe5d6f381497b8c776b6aa98a2109005bcebca5bace011e125712039c9dad191e395c3a05e96adf212ffb9bdbd6b5622a96a3d89529c221e59fb61d3
-
SSDEEP
768:6e8bNRqsuhlGOBnhgFwumSCbxTGy/BBGg4NKJJKqUThbJ32+ve7i40vN0TlT+XkE:unqJu3abBGy3G8V0iuo8
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1Defense Evasion
Hide Artifacts
2Hidden Files and Directories
2Modify Registry
4