Overview

overview

8

task1

 

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3319a17ec91c5eb4806bd631179ebc2f2bef86f5ee44534b95d753ae20185de3

  • Size

    179KB

  • Sample

    191212-tyz6n9asfs

  • MD5

    1697d6e73fdab540ad8232500a683d82

  • SHA1

    13c67fe48866bb38e80c7d3e8b20b53d128a558d

  • SHA256

    3319a17ec91c5eb4806bd631179ebc2f2bef86f5ee44534b95d753ae20185de3

  • SHA512

    be1e270f357a3b7c154d4adaa9c33352edb3d91241a0f92184106a13eec270d2934bf333cb0c0748968e1553923653de5d2dea88182b4836c3274ee947249481

Score
8/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://beekaygroup.com/wp-admin/9MmF/
exe.dropper

http://ddecoder.com/css/tct/
exe.dropper

http://ekolfotografcilik.com/administrator/dm3cou/
exe.dropper

http://fairfaxhost.com/Nets.eu/7Lzn9wt/
exe.dropper

http://int.spro3.fcomet.com/wp-admin/jv/

Targets

    • Target

      3319a17ec91c5eb4806bd631179ebc2f2bef86f5ee44534b95d753ae20185de3

    • Size

      179KB

    • MD5

      1697d6e73fdab540ad8232500a683d82

    • SHA1

      13c67fe48866bb38e80c7d3e8b20b53d128a558d

    • SHA256

      3319a17ec91c5eb4806bd631179ebc2f2bef86f5ee44534b95d753ae20185de3

    • SHA512

      be1e270f357a3b7c154d4adaa9c33352edb3d91241a0f92184106a13eec270d2934bf333cb0c0748968e1553923653de5d2dea88182b4836c3274ee947249481

    Score
    8/10

    • Executes dropped EXE

    • Checks system information in the registry

      System information is often read in order to detect sandboxing environments.

    task1

MITRE ATT&CK Enterprise v6

Tasks