Overview

overview

10

task1

 

10

task2

 

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Malware Samples.zip

  • Size

    5.0MB

  • Sample

    191227-a5ctvybj9e

  • MD5

    7b680fdd7ef26a6db365f28a74625d72

  • SHA1

    c0a256e4f07a22b1db497545680afab7e0f5ebc8

  • SHA256

    b492a779314f8e5acadc326421167bd4ac3ed160d9ad85ce5bd02d71434caa00

  • SHA512

    6cb1e8d0b96cdff86c4b1bd1a984f78b94ebe036b8a610bec478850d7084a1cfbcf2dba5f47aa56dd4e65afd535fbc3c81780bcdd30bbc51f8ca2d6c0d2ee1de

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://kaikeline.com/1B/
exe.dropper

http://irpot.com/css/jRk5gg/
exe.dropper

http://kartcup.net/picture_library/eqop/
exe.dropper

http://lakelass.com/cgi-bin/2dhm/
exe.dropper

http://ouimet.biz/cgi-bin/l/

Targets

    • Target

      7fd7b14acff688e84b811d03e1831552.danger

    • Size

      178KB

    • MD5

      7fd7b14acff688e84b811d03e1831552

    • SHA1

      f3f4e4d2200d37b1f6b4a13ff61a0a1c4766ce04

    • SHA256

      57fd6973ae1ee5bc249420f5bfae5737bc4c9cbbf0caac146194044d390f9efc

    • SHA512

      93bcf1cf822095b5f74ea73e9e56739fe8e7fc80aa99a6ec1b91a5fca1fd14600d60ea0878595a53e6890b3c7edce6be894ebaa305233d50b1d336255fa9a5e4

    Score
    10/10

    • Process spawned unexpected child process

    • Drops file in System32 directory

    task1task2

MITRE ATT&CK Enterprise v6

Tasks