vobfus | 0e915c9c623c64f4926b87177b42b3c68f9116a2838748d36f0eaba58905d79e | Triage

Submit
Reports

Overview

overview

Static

static

8

0e915c9c62...9e.exe

windows7_x64

0e915c9c62...9e.exe

windows10_x64

Sharing

General

Target

0e915c9c623c64f4926b87177b42b3c68f9116a2838748d36f0eaba58905d79e
Size

220KB
Sample

210513-rd1czm3r32
MD5

be75e5fe13570dd446c32afe01ecd794
SHA1

1df6a094a3e6a0f25bf34352df346d4eaddbfc6c
SHA256

0e915c9c623c64f4926b87177b42b3c68f9116a2838748d36f0eaba58905d79e
SHA512

24e6b04734a3955d64d174a49ab2509d79880695727d57d2fb06071aa78c1ca4a76f22e30e61e7d613fda712c5c863cdeb88a538740fd6b594c6edbc226da4df

Score

10^/10

vobfus persistence upx worm

Static task

static1

Behavioral task

behavioral1

Sample

0e915c9c623c64f4926b87177b42b3c68f9116a2838748d36f0eaba58905d79e.exe

Resource

win7v20210410

vobfus persistence worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

0e915c9c623c64f4926b87177b42b3c68f9116a2838748d36f0eaba58905d79e.exe

Resource

win10v20210410

vobfus persistence worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  0e915c9c623c64f4926b87177b42b3c68f9116a2838748d36f0eaba58905d79e
- Size
  
  220KB
- MD5
  
  be75e5fe13570dd446c32afe01ecd794
- SHA1
  
  1df6a094a3e6a0f25bf34352df346d4eaddbfc6c
- SHA256
  
  0e915c9c623c64f4926b87177b42b3c68f9116a2838748d36f0eaba58905d79e
- SHA512
  
  24e6b04734a3955d64d174a49ab2509d79880695727d57d2fb06071aa78c1ca4a76f22e30e61e7d613fda712c5c863cdeb88a538740fd6b594c6edbc226da4df
Score

10^/10

vobfus persistence worm
- Vobfus
  A widespread worm which spreads via network drives and removable media.
  worm vobfus
- Adds policy Run key to start application
  persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

vobfuspersistenceworm

behavioral2

vobfuspersistenceworm

© 2018-2024

Terms | Privacy