Overview

overview

7

Static

static

3

d28619a6e5...da.exe

windows7-x64

7

d28619a6e5...da.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d28619a6e55e38280dbf4d63a1e869439cef6d2992f490b61d34c4bdbb66f4da

  • Size

    76KB

  • Sample

    240427-17lyfsaa8s

  • MD5

    6d2a38f47d2efe8b4e4383ff2c36ee74

  • SHA1

    356b5a63943cb9a26136fa5b8994007331366541

  • SHA256

    d28619a6e55e38280dbf4d63a1e869439cef6d2992f490b61d34c4bdbb66f4da

  • SHA512

    b10e2df596ac405a5d3a3c07534f63c31fb9debbdf75c7533b9ea1fce47089c861faad535ea9fa6654b3245391c8341835e28306acee290ce0416619af6f71aa

  • SSDEEP

    1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOqDr:GhfxHNIreQm+HiZDr

Score
7/10
persistence

Malware Config

Targets

    • Target

      d28619a6e55e38280dbf4d63a1e869439cef6d2992f490b61d34c4bdbb66f4da

    • Size

      76KB

    • MD5

      6d2a38f47d2efe8b4e4383ff2c36ee74

    • SHA1

      356b5a63943cb9a26136fa5b8994007331366541

    • SHA256

      d28619a6e55e38280dbf4d63a1e869439cef6d2992f490b61d34c4bdbb66f4da

    • SHA512

      b10e2df596ac405a5d3a3c07534f63c31fb9debbdf75c7533b9ea1fce47089c861faad535ea9fa6654b3245391c8341835e28306acee290ce0416619af6f71aa

    • SSDEEP

      1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOqDr:GhfxHNIreQm+HiZDr

    Score
    7/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Event Triggered Execution

1
T1546

Change Default File Association

1
T1546.001

Privilege Escalation

Event Triggered Execution

1
T1546

Change Default File Association

1
T1546.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks