Overview

overview

8

Static

static

??????????...om.exe

windows7_x64

8

??????????...om.exe

windows10_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    《开发会员十大摘要》接待.导师可看! (1).7z

  • Size

    288KB

  • Sample

    210620-rat3a21axa

  • MD5

    746b9287522f5c82714b393824c2c2dd

  • SHA1

    f3d2c790a04ba7e8b92cdd4fd9ceef2a5d174d6a

  • SHA256

    e7f73bf5ef2e1f244978b84d077ca864fb1c4aae69979d4ffdf8909b8d13be02

  • SHA512

    70cdfa8da4fe90d5147f68822ab8cc465726a3c121ea34ccb317e647238e9bada3e719dcb6b556a7c07be739ae6a77336ec81eb532788f316764ef59f9d28b3d

Score
8/10

Malware Config

Targets

    • Target

      ????????????.?????.com

    • Size

      1.3MB

    • MD5

      38f4f7abbcc1860e23c23a6918f44cda

    • SHA1

      f3d3429fd5add2509ce5af0b42d24b01e1e161ee

    • SHA256

      f1412515481a806ff3350065c8fc0c4c667b1545738deadbf5a1e18291147e48

    • SHA512

      1b1a5c990a2eddfa0ad07d25cafd1144114ed5a78994da202cc29e018c50759f14638d970c7e82e95a8e2093c46161f3af034c4368847cd9ab697308bf35c758

    Score
    8/10

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks