vobfus | 736bdd6cf76ab4cf6153d293b30ee32b462018767936536564bb602612b5db29 | Triage

Submit
Reports

Overview

overview

Static

static

8

736bdd6cf7...29.exe

windows7_x64

736bdd6cf7...29.exe

windows10_x64

Sharing

General

Target

736bdd6cf76ab4cf6153d293b30ee32b462018767936536564bb602612b5db29
Size

384KB
Sample

210515-ss87pp7gbj
MD5

2d8e18511e7fb2cff78e57ae36ae6343
SHA1

fb4a53b31c729b11dbfd58116be7e00fd833c1cb
SHA256

736bdd6cf76ab4cf6153d293b30ee32b462018767936536564bb602612b5db29
SHA512

8ade8599baa8866f76e4ffad19350ab3d054f34935c575862085447fb75ea02ee4677cfe97721d65a52b20217a0ed0fba272a1e566670aec6efd2dd4c6c5eec6

Score

10^/10

vobfus persistence upx worm

Static task

static1

Behavioral task

behavioral1

Sample

736bdd6cf76ab4cf6153d293b30ee32b462018767936536564bb602612b5db29.exe

Resource

win7v20210410

vobfus persistence worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

736bdd6cf76ab4cf6153d293b30ee32b462018767936536564bb602612b5db29.exe

Resource

win10v20210410

vobfus persistence worm

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  736bdd6cf76ab4cf6153d293b30ee32b462018767936536564bb602612b5db29
- Size
  
  384KB
- MD5
  
  2d8e18511e7fb2cff78e57ae36ae6343
- SHA1
  
  fb4a53b31c729b11dbfd58116be7e00fd833c1cb
- SHA256
  
  736bdd6cf76ab4cf6153d293b30ee32b462018767936536564bb602612b5db29
- SHA512
  
  8ade8599baa8866f76e4ffad19350ab3d054f34935c575862085447fb75ea02ee4677cfe97721d65a52b20217a0ed0fba272a1e566670aec6efd2dd4c6c5eec6
Score

10^/10

vobfus persistence worm
- Vobfus
  A widespread worm which spreads via network drives and removable media.
  worm vobfus
- Adds policy Run key to start application
  persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

vobfuspersistenceworm

behavioral2

vobfuspersistenceworm

© 2018-2024

Terms | Privacy