Overview

overview

5

task1

 

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bd8eaf9a88b9faaf2409be50cc656246f59eece56e9f1a4528fadb9424764f13

  • Size

    167KB

  • Sample

    191212-9smnvgca2x

  • MD5

    db1d205b0dbf3feb4d8639002b7d8bdc

  • SHA1

    0ca2a05ee294ad7294999c1bb2749bb909496e7c

  • SHA256

    bd8eaf9a88b9faaf2409be50cc656246f59eece56e9f1a4528fadb9424764f13

  • SHA512

    b20e30173dee3f631bb6588eb25f7c01954fd9a20d64f74f123d200191039531a9e1e3d8ca6a4a391dd6af8c65c6d37c5929b39de00cefd9aa91978ed6f97eb2

Score
5/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://jdcc-stu.com/wp-includes/6109/
exe.dropper

http://jandmadventuring.servermaintain.com/wp-content/uploads/8ly08u77849/
exe.dropper

http://wilkopaintinc.com/common_resource/qac395/
exe.dropper

http://essemengineers.com/AdminPanel/cku0s00262/
exe.dropper

http://t666v.com/vlk2lo4i/fi20416/

Targets

    • Target

      bd8eaf9a88b9faaf2409be50cc656246f59eece56e9f1a4528fadb9424764f13

    • Size

      167KB

    • MD5

      db1d205b0dbf3feb4d8639002b7d8bdc

    • SHA1

      0ca2a05ee294ad7294999c1bb2749bb909496e7c

    • SHA256

      bd8eaf9a88b9faaf2409be50cc656246f59eece56e9f1a4528fadb9424764f13

    • SHA512

      b20e30173dee3f631bb6588eb25f7c01954fd9a20d64f74f123d200191039531a9e1e3d8ca6a4a391dd6af8c65c6d37c5929b39de00cefd9aa91978ed6f97eb2

    Score
    5/10

    • Checks system information in the registry

      System information is often read in order to detect sandboxing environments.

    task1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

3
T1012

System Information Discovery

3
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks