Overview

overview

8

task1

 

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5706b6a65cf2d7a5fe6863cc5621e4bf08a32639bfcc7f159c4921fe10d11f7c

  • Size

    72KB

  • Sample

    191212-swda8j1e3j

  • MD5

    b8111d504766049a6add5e4973a756a0

  • SHA1

    ab2c0d8e7909e5ef3087c0ba096a7bf4717f91b9

  • SHA256

    5706b6a65cf2d7a5fe6863cc5621e4bf08a32639bfcc7f159c4921fe10d11f7c

  • SHA512

    e11afc41da5e5e0ff138fab261305a1dbb798123d4e2322266c99fff71fb363a9ffa75ad6195c8ab094461476c3053480208d43d1482bd48fbea97e60f22d4d9

Score
8/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

https://gizelemonteiro.com/wp-admin/5f8818855/
exe.dropper

https://edu.widion.com/wp-admin/vhds4257/
exe.dropper

http://mainguardmatrimony.com/wp-content/ak36/
exe.dropper

http://www.mediahubml.com/sdccrecap/2d84774/
exe.dropper

https://www.oshodrycleaning.com/aspnet_client/E/b2em3bp37795/

Targets

    • Target

      5706b6a65cf2d7a5fe6863cc5621e4bf08a32639bfcc7f159c4921fe10d11f7c

    • Size

      72KB

    • MD5

      b8111d504766049a6add5e4973a756a0

    • SHA1

      ab2c0d8e7909e5ef3087c0ba096a7bf4717f91b9

    • SHA256

      5706b6a65cf2d7a5fe6863cc5621e4bf08a32639bfcc7f159c4921fe10d11f7c

    • SHA512

      e11afc41da5e5e0ff138fab261305a1dbb798123d4e2322266c99fff71fb363a9ffa75ad6195c8ab094461476c3053480208d43d1482bd48fbea97e60f22d4d9

    Score
    8/10

    • Executes dropped EXE

    • Checks system information in the registry

      System information is often read in order to detect sandboxing environments.

    task1

MITRE ATT&CK Enterprise v6

Tasks