Overview

overview

9

Static

static

22961884ec...07.exe

windows7_x64

9

22961884ec...07.exe

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    22961884ec91198d749373dd6de5792b7ba552fc7685b01708fd2729bdd65607

  • Size

    1.8MB

  • Sample

    210513-s9gf81f3tj

  • MD5

    5d167db352322b0b3cb0d2da677212db

  • SHA1

    ec548e7cb162dde8858a1f76f6ff3d7eb0edea60

  • SHA256

    22961884ec91198d749373dd6de5792b7ba552fc7685b01708fd2729bdd65607

  • SHA512

    509fa1d23b17f474a2b585dab4b4b52e8946a00477225b560cfd22a753449f3b2f1ad41b0a70e8cee713662a3fe7dd6bb4bd61b9ad9f169de2c2ed2adc2ce06b

Score
9/10
cryptonepacker

Malware Config

Targets

    • Target

      22961884ec91198d749373dd6de5792b7ba552fc7685b01708fd2729bdd65607

    • Size

      1.8MB

    • MD5

      5d167db352322b0b3cb0d2da677212db

    • SHA1

      ec548e7cb162dde8858a1f76f6ff3d7eb0edea60

    • SHA256

      22961884ec91198d749373dd6de5792b7ba552fc7685b01708fd2729bdd65607

    • SHA512

      509fa1d23b17f474a2b585dab4b4b52e8946a00477225b560cfd22a753449f3b2f1ad41b0a70e8cee713662a3fe7dd6bb4bd61b9ad9f169de2c2ed2adc2ce06b

    Score
    9/10
    cryptonepacker

    • CryptOne packer

      Detects CryptOne packer defined in NCC blogpost.

      cryptonepacker

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

2
T1082

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks