Overview

overview

8

Static

static

1

InjCht.exe

windows7_x64

8

InjCht.exe

windows10_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    InjCht.exe

  • Size

    6.4MB

  • Sample

    210511-g849nz7x7x

  • MD5

    bd2068cfbffbe0eeb388f40ba17724d2

  • SHA1

    f8200558ef6bbf31474023d913642fed52b97e2f

  • SHA256

    0204588ca4e01c306d247a6dfc7ec1e3a29014e08d2ee0ce73d756ebbc429b6b

  • SHA512

    7a2e59c0bcd170636da3cc069cb6bb0fcf788dbe6d91ab48a70c10f7b0b950df737ecae1cc8d00cd6feb6f3d8a1c160dfe9ede6a73dfc8d47a9aa532bf46fae0

Score
8/10
evasionpersistence

Malware Config

Targets

    • Target

      InjCht.exe

    • Size

      6.4MB

    • MD5

      bd2068cfbffbe0eeb388f40ba17724d2

    • SHA1

      f8200558ef6bbf31474023d913642fed52b97e2f

    • SHA256

      0204588ca4e01c306d247a6dfc7ec1e3a29014e08d2ee0ce73d756ebbc429b6b

    • SHA512

      7a2e59c0bcd170636da3cc069cb6bb0fcf788dbe6d91ab48a70c10f7b0b950df737ecae1cc8d00cd6feb6f3d8a1c160dfe9ede6a73dfc8d47a9aa532bf46fae0

    Score
    8/10
    evasionpersistence

    • Creates new service(s)

      persistence

    • Executes dropped EXE

    • Stops running service(s)

      evasion

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

New Service

1
T1050

Modify Existing Service

1
T1031

Privilege Escalation

New Service

1
T1050

Defense Evasion

Impair Defenses

1
T1562

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Service Stop

1
T1489

Tasks