setup(1).exe

General
Target

setup(1).exe

Size

283KB

Sample

210727-kn2bc9rk86

Score
10 /10
MD5

a87f53d5aa35baa8e387d757224e2909

SHA1

76ebf1d2944c169eb024a57ba445bf3c5fed9ed4

SHA256

3ee061b0859a0ccc9a99d1b33ee6a16beb1828a308a610c6311b3a6d6c1f6d8b

SHA512

889426c71e57203851f51dd27d489b07839ad4d4712b9f62287bc665aa725898ecc2e7cd74129adafd29cbb5c664b5cd09f80623ba80c88db8abd8cfc0d5847a

Malware Config
Targets
Target

setup(1).exe

MD5

a87f53d5aa35baa8e387d757224e2909

Filesize

283KB

Score
10 /10
SHA1

76ebf1d2944c169eb024a57ba445bf3c5fed9ed4

SHA256

3ee061b0859a0ccc9a99d1b33ee6a16beb1828a308a610c6311b3a6d6c1f6d8b

SHA512

889426c71e57203851f51dd27d489b07839ad4d4712b9f62287bc665aa725898ecc2e7cd74129adafd29cbb5c664b5cd09f80623ba80c88db8abd8cfc0d5847a

Tags

Signatures

  • Suspicious use of NtCreateProcessExOtherParentProcess

  • suricata: ET MALWARE GCleaner Downloader Activity M1

    Tags

  • Deletes itself

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Execution
            Exfiltration
              Impact
                Initial Access
                  Lateral Movement
                    Persistence
                      Privilege Escalation
                        Tasks

                        static1

                        behavioral1

                        10/10

                        behavioral2

                        10/10