f19fdeb545b8d9aa73b3506ffe1867f3da17b240d0e346b38f3ff9f75c7bc66b | Triage

Submit
Reports

Overview

overview

6

Static

static

6

fZQDwrtq.exe

windows7_x64

6

fZQDwrtq.exe

windows10_x64

6

Sharing

General

Target

fZQDwrtq.exe
Size

4.6MB
Sample

201030-6pkzcvpck6
MD5

bf8e7e333f16566a67a33205d4d57d54
SHA1

cb4682b463004dac5af531a9396671642de53032
SHA256

f19fdeb545b8d9aa73b3506ffe1867f3da17b240d0e346b38f3ff9f75c7bc66b
SHA512

0b87e756425998231246a1c3da1d4ed6d70898103910357c15ec204428d4c4aa86f7adb8d5a6d4ce1a89a192595735caf754e6fc70e53c1319d10487a2761c1f

Score

6^/10

discovery persistence

Static task

static1

Behavioral task

behavioral1

Sample

fZQDwrtq.exe

Resource

win7v20201028

discovery persistence

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

fZQDwrtq.exe

Resource

win10v20201028

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  fZQDwrtq.exe
- Size
  
  4.6MB
- MD5
  
  bf8e7e333f16566a67a33205d4d57d54
- SHA1
  
  cb4682b463004dac5af531a9396671642de53032
- SHA256
  
  f19fdeb545b8d9aa73b3506ffe1867f3da17b240d0e346b38f3ff9f75c7bc66b
- SHA512
  
  0b87e756425998231246a1c3da1d4ed6d70898103910357c15ec204428d4c4aa86f7adb8d5a6d4ce1a89a192595735caf754e6fc70e53c1319d10487a2761c1f
Score

6^/10

discovery persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Modifies service
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Command-Line Interface

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Process Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

© 2018-2024

Terms | Privacy