General
-
Target
e94d8140f52d72e4635b0ccbe1641b77b900cdb71d198666b3df0e3b9d123696N.exe
-
Size
140KB
-
Sample
241130-fvkveaymbq
-
MD5
881e8ce29784fcf70aa417e71f8fa450
-
SHA1
b32b24e96c83b91df4be038c1928d34bc9be4413
-
SHA256
e94d8140f52d72e4635b0ccbe1641b77b900cdb71d198666b3df0e3b9d123696
-
SHA512
ec8d09fc2d22efe4fd483245b41eb7d6988221c42470b000234c2ee9434d4bfe731842f25885cc4c7a1b4652aee3cbd8aac49df66b2d01618ef42f185fcafc0b
-
SSDEEP
1536:PiiWulVLEUDfRsq5kQm0AG/nmnfvAk8TUEWdJuBv9Y0Sg+mmT:Vtdhj/T/n2f6TUEW6v9dS2m
Malware Config
Targets
-
-
Target
e94d8140f52d72e4635b0ccbe1641b77b900cdb71d198666b3df0e3b9d123696N.exe
-
Size
140KB
-
MD5
881e8ce29784fcf70aa417e71f8fa450
-
SHA1
b32b24e96c83b91df4be038c1928d34bc9be4413
-
SHA256
e94d8140f52d72e4635b0ccbe1641b77b900cdb71d198666b3df0e3b9d123696
-
SHA512
ec8d09fc2d22efe4fd483245b41eb7d6988221c42470b000234c2ee9434d4bfe731842f25885cc4c7a1b4652aee3cbd8aac49df66b2d01618ef42f185fcafc0b
-
SSDEEP
1536:PiiWulVLEUDfRsq5kQm0AG/nmnfvAk8TUEWdJuBv9Y0Sg+mmT:Vtdhj/T/n2f6TUEW6v9dS2m
Score8/10-
Modifies Windows Firewall
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Defense Evasion
Impair Defenses
1Disable or Modify System Firewall
1Modify Registry
1