Overview

overview

7

Static

static

3

0dcdb9db02...26.exe

windows7-x64

7

0dcdb9db02...26.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0dcdb9db02b4e2e9982c7565ed9217a1b8b13dd49aaf2ec47bb824ad1f68c226

  • Size

    84KB

  • Sample

    240427-18a8cahg56

  • MD5

    965696ab0556f35508631bd45dc75e76

  • SHA1

    c44973344f8aa94228cc5623bd21faa20d42b2bb

  • SHA256

    0dcdb9db02b4e2e9982c7565ed9217a1b8b13dd49aaf2ec47bb824ad1f68c226

  • SHA512

    71ebf8d8c391630f7fe1d6673dfe046e1fb1a23392c72ffa4776256cb9d0ea8232cda7cb897e72b82e1caae2ebc470533213e1c5a23e1bac1284eb707111625d

  • SSDEEP

    1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOJAfYs:GhfxHNIreQm+HiyAfYs

Score
7/10
persistence

Malware Config

Targets

    • Target

      0dcdb9db02b4e2e9982c7565ed9217a1b8b13dd49aaf2ec47bb824ad1f68c226

    • Size

      84KB

    • MD5

      965696ab0556f35508631bd45dc75e76

    • SHA1

      c44973344f8aa94228cc5623bd21faa20d42b2bb

    • SHA256

      0dcdb9db02b4e2e9982c7565ed9217a1b8b13dd49aaf2ec47bb824ad1f68c226

    • SHA512

      71ebf8d8c391630f7fe1d6673dfe046e1fb1a23392c72ffa4776256cb9d0ea8232cda7cb897e72b82e1caae2ebc470533213e1c5a23e1bac1284eb707111625d

    • SSDEEP

      1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOJAfYs:GhfxHNIreQm+HiyAfYs

    Score
    7/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Event Triggered Execution

1
T1546

Change Default File Association

1
T1546.001

Privilege Escalation

Event Triggered Execution

1
T1546

Change Default File Association

1
T1546.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks