Overview

overview

8

Static

static

b719cba1a8...e4.exe

windows7_x64

8

b719cba1a8...e4.exe

windows10_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b719cba1a8c6e43a6f106a57b04962e4

  • Size

    1.4MB

  • Sample

    210722-929w1qyndj

  • MD5

    b719cba1a8c6e43a6f106a57b04962e4

  • SHA1

    80363428f99500ca7da13ad4ff5b07a97627507f

  • SHA256

    82d440b0f4ab1630e2e2cfe49a04ea383657ef055b33fb86db7aaa8131e2933b

  • SHA512

    0411ed00195a9bde7710718939af58a8a090d5db924e4317b499ee89dc6f1e83908045e787e36237887df738351de310b1c61da99b8df702f0033b0255935264

Score
8/10

Malware Config

Targets

    • Target

      b719cba1a8c6e43a6f106a57b04962e4

    • Size

      1.4MB

    • MD5

      b719cba1a8c6e43a6f106a57b04962e4

    • SHA1

      80363428f99500ca7da13ad4ff5b07a97627507f

    • SHA256

      82d440b0f4ab1630e2e2cfe49a04ea383657ef055b33fb86db7aaa8131e2933b

    • SHA512

      0411ed00195a9bde7710718939af58a8a090d5db924e4317b499ee89dc6f1e83908045e787e36237887df738351de310b1c61da99b8df702f0033b0255935264

    Score
    8/10

    • Executes dropped EXE

    • Drops startup file

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Command-Line Interface

1
T1059

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

1
T1130

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

2
T1082

Remote System Discovery

1
T1018

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks