General

  • Target

    459fb0c452217afee2803047c10b9984ba9deba396e491368a6d57e0a0c6e83bN.exe

  • Size

    76KB

  • Sample

    241121-nsejlssdrm

  • MD5

    c5f54aa98d9b341b2ceb83459528d460

  • SHA1

    b8beb5f15111a45804d6f596fe7438eba9d7d6e5

  • SHA256

    459fb0c452217afee2803047c10b9984ba9deba396e491368a6d57e0a0c6e83b

  • SHA512

    ad9f4eda59744723c19dd808efac0d95b2f843162fa874a348e9340e3c65aaccf347d58d71c589fee25acede4381f5f9815cc46567e70097785f61c28ca9b7c3

  • SSDEEP

    768:lembNRqsuhlGOBrhgFwumSCbxTGy/BBGg4NKJJKqUThbJ32+ve7i40vN0TlT+Xk6:Lnqdu3abBGy3G8V0iuoi

Malware Config

Targets

    • Target

      459fb0c452217afee2803047c10b9984ba9deba396e491368a6d57e0a0c6e83bN.exe

    • Size

      76KB

    • MD5

      c5f54aa98d9b341b2ceb83459528d460

    • SHA1

      b8beb5f15111a45804d6f596fe7438eba9d7d6e5

    • SHA256

      459fb0c452217afee2803047c10b9984ba9deba396e491368a6d57e0a0c6e83b

    • SHA512

      ad9f4eda59744723c19dd808efac0d95b2f843162fa874a348e9340e3c65aaccf347d58d71c589fee25acede4381f5f9815cc46567e70097785f61c28ca9b7c3

    • SSDEEP

      768:lembNRqsuhlGOBrhgFwumSCbxTGy/BBGg4NKJJKqUThbJ32+ve7i40vN0TlT+Xk6:Lnqdu3abBGy3G8V0iuoi

    • Modifies visibility of file extensions in Explorer

    • Modifies visiblity of hidden/system files in Explorer

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks