General

  • Target

    6b4f7e957dfcea03b22d1159be96ffb987ec94ac49b0198849923b70808f28af.exe

  • Size

    172KB

  • Sample

    250108-hvzpns1peq

  • MD5

    9c48b5aa53def1be616668b0458bb280

  • SHA1

    868a97e5256ef3f66853523e5ced74fea45f22df

  • SHA256

    6b4f7e957dfcea03b22d1159be96ffb987ec94ac49b0198849923b70808f28af

  • SHA512

    fbef6c9919b9a3ebc54506f97b55a57c4fa2c65025330d276f6fcce202226094daafdef63840ab21a5caa0ed554615f2a5a0ba4b4e7703c63706e95aef8c7a62

  • SSDEEP

    3072:6cEsyxdDSkeXEJPkXY7FLUrOJisVmMfX1Ws:J5IYEJcI7FLUqV5X1b

Malware Config

Targets

    • Target

      6b4f7e957dfcea03b22d1159be96ffb987ec94ac49b0198849923b70808f28af.exe

    • Size

      172KB

    • MD5

      9c48b5aa53def1be616668b0458bb280

    • SHA1

      868a97e5256ef3f66853523e5ced74fea45f22df

    • SHA256

      6b4f7e957dfcea03b22d1159be96ffb987ec94ac49b0198849923b70808f28af

    • SHA512

      fbef6c9919b9a3ebc54506f97b55a57c4fa2c65025330d276f6fcce202226094daafdef63840ab21a5caa0ed554615f2a5a0ba4b4e7703c63706e95aef8c7a62

    • SSDEEP

      3072:6cEsyxdDSkeXEJPkXY7FLUrOJisVmMfX1Ws:J5IYEJcI7FLUqV5X1b

    • Modifies visiblity of hidden/system files in Explorer

    • UAC bypass

    • Adds policy Run key to start application

    • Disables taskbar notifications via registry modification

    • Deletes itself

    • Blocklisted process makes network request

MITRE ATT&CK Enterprise v15

Tasks