Overview

overview

10

Static

static

SHIPPING DOCUMENT.exe

windows7_x64

10

SHIPPING DOCUMENT.exe

windows10_x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SHIPPING DOCUMENT.exe

  • Size

    21KB

  • Sample

    210226-nswvatv7ls

  • MD5

    7602435d3ce856276d88c70ade365e94

  • SHA1

    3883c0b282e011c7954ed61e11a948511eec686f

  • SHA256

    c15fd959d72ff5dd978a6e8e15877b3f41fba6a89d9bb4890287668b17d05a3c

  • SHA512

    2a07de2f35a8a031adcbcd97eee3acdc46f080567a6883f4e81d2cdd3d9d78ddb28e0a8b315aa56656d253378def5331fa6e4e6bf05b9ea88a8f2509c1a00b86

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      SHIPPING DOCUMENT.exe

    • Size

      21KB

    • MD5

      7602435d3ce856276d88c70ade365e94

    • SHA1

      3883c0b282e011c7954ed61e11a948511eec686f

    • SHA256

      c15fd959d72ff5dd978a6e8e15877b3f41fba6a89d9bb4890287668b17d05a3c

    • SHA512

      2a07de2f35a8a031adcbcd97eee3acdc46f080567a6883f4e81d2cdd3d9d78ddb28e0a8b315aa56656d253378def5331fa6e4e6bf05b9ea88a8f2509c1a00b86

    Score
    10/10
    evasionpersistencetrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Disabling Security Tools

2
T1089

Modify Registry

3
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks