General

  • Target

    Mini_Client.exe

  • Size

    25.7MB

  • Sample

    250325-lhka1atydt

  • MD5

    6c62113d5f442159496d518b4aed8bbd

  • SHA1

    1c111fd5826fca0b63bb509fdb02b3a579bcf92e

  • SHA256

    8613121040c7cb9e288b2ba33cbf85987c8ff0ab0a847504891bbe287bbe05e7

  • SHA512

    66a75550f906811c15db9e5d082224ba9345c7c08564440ec1b02c2627ff980ea558923c138e6eae7c6a0306d1755ccdbb784057a40e1b3dd7dd1c7c4c30471d

  • SSDEEP

    393216:xuaRjE0jPp9v2/XlXyE6KVlh7Y3D380rMvUeQ4zNrXL1DcX+NXfFdQKKa6dAePYt:YeX9vqliE6yQDs2McGJ1SCXfFdQKY5f

Malware Config

Targets

    • Target

      Mini_Client.exe

    • Size

      25.7MB

    • MD5

      6c62113d5f442159496d518b4aed8bbd

    • SHA1

      1c111fd5826fca0b63bb509fdb02b3a579bcf92e

    • SHA256

      8613121040c7cb9e288b2ba33cbf85987c8ff0ab0a847504891bbe287bbe05e7

    • SHA512

      66a75550f906811c15db9e5d082224ba9345c7c08564440ec1b02c2627ff980ea558923c138e6eae7c6a0306d1755ccdbb784057a40e1b3dd7dd1c7c4c30471d

    • SSDEEP

      393216:xuaRjE0jPp9v2/XlXyE6KVlh7Y3D380rMvUeQ4zNrXL1DcX+NXfFdQKKa6dAePYt:YeX9vqliE6yQDs2McGJ1SCXfFdQKY5f

    • CryptOne packer

      Detects CryptOne packer defined in NCC blogpost.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks