7bf063e66c7e5f500d88292ac613173c25a05a3f53a9a01feb01497777f99e9c | Triage

Sharing

General

Target

7bf063e66c7e5f500d88292ac613173c25a05a3f53a9a01feb01497777f99e9c
Size

243KB
Sample

201108-wr5ynfm62a
MD5

a0201df4c43b3dbb5966a1c41d261b84
SHA1

6865fcaed6f5f95197a194ab53cfbfef6348dc72
SHA256

7bf063e66c7e5f500d88292ac613173c25a05a3f53a9a01feb01497777f99e9c
SHA512

7fa2dad0e233472689178d746c77985b2c621a3cd019928d7fcc4efb77666aab4de681021d5aa85bd4fca50e4ad508310b3aaa5017aa27f4368064cac6b262a5

Score

8^/10

discovery

Malware Config

Targets

- Target
  
  7bf063e66c7e5f500d88292ac613173c25a05a3f53a9a01feb01497777f99e9c
- Size
  
  243KB
- MD5
  
  a0201df4c43b3dbb5966a1c41d261b84
- SHA1
  
  6865fcaed6f5f95197a194ab53cfbfef6348dc72
- SHA256
  
  7bf063e66c7e5f500d88292ac613173c25a05a3f53a9a01feb01497777f99e9c
- SHA512
  
  7fa2dad0e233472689178d746c77985b2c621a3cd019928d7fcc4efb77666aab4de681021d5aa85bd4fca50e4ad508310b3aaa5017aa27f4368064cac6b262a5
Score

8^/10

discovery
- Blacklisted process makes network request
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2