Overview

overview

8

task1

 

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ddb132a2a482908f35a670ba81bd36da2e7972ac5afdc4aa61607088769774b5

  • Size

    187KB

  • Sample

    191216-3l65tdvfsn

  • MD5

    d47bad366dcbbf88eaedb038ede0dadc

  • SHA1

    6e829856df5ec1d700911aea51806dd11758c7eb

  • SHA256

    ddb132a2a482908f35a670ba81bd36da2e7972ac5afdc4aa61607088769774b5

  • SHA512

    925040bc0935f60529edf90069bd1082bffd540b9b27fcabcea9a8858205a29306f14935bc43de4b5ee8c97733747b8aaccccda8ae74d3dd63c26ead70afd4e0

Score
8/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://www.simple-it.org/wp-content/5ytq5ejxlc-r2pqs5bzt6-509383840/
exe.dropper

https://www.uaeneeds.com/wp-admin/iPaIUkhj/
exe.dropper

http://oki-dental.com/sys/upydu-4nmmykhbf-292/
exe.dropper

http://blog.itsaboutnature.net/confabulate-grainy/tad0m4bjt-li6lr-5546823/
exe.dropper

http://kellis.store/wp-content/sLTProK/

Targets

    • Target

      ddb132a2a482908f35a670ba81bd36da2e7972ac5afdc4aa61607088769774b5

    • Size

      187KB

    • MD5

      d47bad366dcbbf88eaedb038ede0dadc

    • SHA1

      6e829856df5ec1d700911aea51806dd11758c7eb

    • SHA256

      ddb132a2a482908f35a670ba81bd36da2e7972ac5afdc4aa61607088769774b5

    • SHA512

      925040bc0935f60529edf90069bd1082bffd540b9b27fcabcea9a8858205a29306f14935bc43de4b5ee8c97733747b8aaccccda8ae74d3dd63c26ead70afd4e0

    Score
    8/10

    • Executes dropped EXE

    • Checks system information in the registry

      System information is often read in order to detect sandboxing environments.

    task1

MITRE ATT&CK Enterprise v6

Tasks