Overview

overview

8

task1

 

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    20a24eed16bb350495006f0b6adb467accd7d199c56fe73b5fd36a471c5dbd86

  • Size

    165KB

  • Sample

    191211-s5ddk2thnn

  • MD5

    d1a65ec21cb77519dea8b2df8544f0b0

  • SHA1

    900bf9d7326fb8de37c3f91bf502f0f28d6e88e6

  • SHA256

    20a24eed16bb350495006f0b6adb467accd7d199c56fe73b5fd36a471c5dbd86

  • SHA512

    c2725ee6a457f473af057a0a7519a41d787a177e716c4b4a42fe8cd010e7656b79a1ace7071ae8c167fb8874ece9ad80bbb4d6f4c14a5c8e13e02f0467988a32

Score
8/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://qq546871516.com/publicfiles/lAZxpEZZk/
exe.dropper

http://ameerabd.com/wp-admin/cprKsFCBK/
exe.dropper

http://hraxisindia.com/aspnet_client/q0z96ighij-97lqm-04/
exe.dropper

http://masjid-alrahman.org/grnxszbre/yhoa1-t0dsvm58nh-3608899332/
exe.dropper

http://makalelisiteler.ayakkabilar.org/wp/mIxeAr/

Targets

    • Target

      20a24eed16bb350495006f0b6adb467accd7d199c56fe73b5fd36a471c5dbd86

    • Size

      165KB

    • MD5

      d1a65ec21cb77519dea8b2df8544f0b0

    • SHA1

      900bf9d7326fb8de37c3f91bf502f0f28d6e88e6

    • SHA256

      20a24eed16bb350495006f0b6adb467accd7d199c56fe73b5fd36a471c5dbd86

    • SHA512

      c2725ee6a457f473af057a0a7519a41d787a177e716c4b4a42fe8cd010e7656b79a1ace7071ae8c167fb8874ece9ad80bbb4d6f4c14a5c8e13e02f0467988a32

    Score
    8/10

    • Executes dropped EXE

    • Checks system information in the registry

      System information is often read in order to detect sandboxing environments.

    task1

MITRE ATT&CK Enterprise v6

Tasks