Overview

overview

10

Static

static

wifi.exe

windows7_x64

10

wifi.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    wifi.exe

  • Size

    588KB

  • Sample

    200804-htgdt4y122

  • MD5

    3558677b2cf6a8dd475f9e8fd0fea5a3

  • SHA1

    c06f1c629ab4c9e1ea77c7bb467bc67192df12ea

  • SHA256

    6a8419d81fb645c073439e284a988ab540cd514a933ce2b6ee4b776aa50b50ac

  • SHA512

    7b7a46263065cf4cc74856b76daf21d5c3d34c0c9e41969a6471a17189dc451ecea957daeb7c9107320b43b533a610b59a02fa7e150e86bfcfc8ba355b84227b

Score
10/10
osirisbankerbotnetdiscovery

Malware Config

Targets

    • Target

      wifi.exe

    • Size

      588KB

    • MD5

      3558677b2cf6a8dd475f9e8fd0fea5a3

    • SHA1

      c06f1c629ab4c9e1ea77c7bb467bc67192df12ea

    • SHA256

      6a8419d81fb645c073439e284a988ab540cd514a933ce2b6ee4b776aa50b50ac

    • SHA512

      7b7a46263065cf4cc74856b76daf21d5c3d34c0c9e41969a6471a17189dc451ecea957daeb7c9107320b43b533a610b59a02fa7e150e86bfcfc8ba355b84227b

    Score
    10/10
    bankerbotnetosirisdiscovery

    • Osiris

      bankerbotnetosiris

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks